Job Title: Network Security Specialist
Location: Columbus OH(2 days in office)
Duration: 6 Months
Interview: Webex
- As a member of the ESS Security & Infrastructure Operations team this senior level IT Security will support the team by leading major security initiatives implementations and integrations. Additionally the resource will drive application and infrastructure security within multiple platforms to minimize application vulnerabilities and application risk:
- Safeguard software applications from potential threats and breaches
- Bridge between security and development ensuring that applications are designed developed and deployed in a secure manner
- Identifying and fixing security vulnerabilities
- Proactively identifying potential security risks developing mitigation strategies and ensuring that security measures are incorporated right from the beginning of the application development process
- Automating security: automating scans code verification and other security processes
- Developing security protocols: Designing and implementing security best practices for application development deployment and operations
- Monitoring security: Monitoring system health and performance security alerts and events
- Responding to incidents: Responding to incidents promptly and performing root cause analysis
- Ensuring compliance: Ensuring compliance with industry standards and regulations
- Maintaining security policies: Maintaining and improving security policies procedures and documentation
- Responsible for integrating security tools and processes into the DevOps pipeline
- In the event of a security incident or breach assist in the response and recovery process; work closely with incident response teams to mitigate the impact of a breach
- Overseeing and improving operational processes
- Analyze data troubleshooting issues and drive continuous improvement initiatives minimizing downtime maximizing productivity and supporting the overall strategic objectives of Programs and Service Areas
- Apply technical expertise to ensure that all operational processes are efficient and reliable working across Programs and Service Areas and various departments within DAS to troubleshoot and resolve complex issues
- Analyze performance data refine procedures and implement innovative solutions to enhance overall productivity
4 years required for all of the below
- College Degree
- Proficiency with security scanning and vulnerability management tools (Qualys Checkmarx AutoRabit CodeScan)
- Proficiency with DevOps platforms (Azure DevOps Copado)
- Proficiency with operating systems (Windows Linux)
- Experience with administering (security controls and management) Cloud computing platforms (Salesforce)
- Working knowledge of security frameworks and standards (OWASP Top10 SANS 25 NIST SP 80053 etc.)
- Working knowledge of web application security tools (F5 Web Application Firewall Cloudflare AppOmni)
- Working knowledge of SIEM/SOAR tools (Chronicle Splunk)
- Working knowledge of integration platforms (ServiceNow MuleSoft Oracle Integration Cloud Tibco)
Highly Desired
- CompTlA SecuritY Certification
- CySA Certification
- CISM Certification
- CISA Certification
Nice to have
- Familiarity with scripting and programming languages (Python Power Shell.Net)
- Familiarity with Cybersecurity platforms (CrowdStrike)