Security Specialist
Security Specialist
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
As a member of the ESS Security & Infrastructure Operations team this senior level IT Security will support the team by leading major security initiatives implementations and integrations. Additionally the resource will drive application and infrastructure security within multiple platforms to minimize application vulnerabilities and application risk:
- Safeguard software applications from potential threats and breaches
- Bridge between security and development ensuring that applications are designed developed and deployed in a secure manner
- Identifying and fixing security vulnerabilities
- Proactively identifying potential security risks developing mitigation strategies and ensuring that security measures are incorporated right from the beginning of the application development process
- Automating security: automating scans code verification and other security processes
- Developing security protocols: Designing and implementing security best practices for application development deployment and operations
- Monitoring security: Monitoring system health and performance security alerts and events
- Responding to incidents: Responding to incidents promptly and performing root cause analysis
- Ensuring compliance: Ensuring compliance with industry standards and regulations
- Maintaining security policies: Maintaining and improving security policies procedures and documentation
- Responsible for integrating security tools and processes into the DevOps pipeline
- In the event of a security incident or breach assist in the response and recovery process; work closely with incident response teams to mitigate the impact of a breach
- Overseeing and improving operational processes
- Analyze data troubleshooting issues and drive continuous improvement initiatives minimizing downtime maximizing productivity and supporting the overall strategic objectives of Programs and Service Areas
- Apply technical expertise to ensure that all operational processes are efficient and reliable working across Programs and Service Areas and various departments within DAS to troubleshoot and resolve complex issues
- Analyze performance data refine procedures and implement innovative solutions to enhance overall productivity
Required / Desired Skills:
Skills
Required / Desired Skills
Years of Experience
College Degree
Required
Proficiency with security scanning and vulnerability management tools (Qualys Checkmarx AutoRabit CodeScan)
Required
Proficiency with DevOps platforms (Azure DevOps Copado)
Required
Proficiency with operating systems (Windows Linux)
Required
Experience with administering (security controls and management) Cloud computing platforms (Salesforce)
Required
Working knowledge of security frameworks and standards (OWASP Top10 SANS 25 NIST SP 80053 etc.)
Required
Working knowledge of web application security tools (F5 Web Application Firewall Cloudflare AppOmni)
Required
Working knowledge of SIEM/SOAR tools (Chronicle Splunk)
Required
Working knowledge of integration platforms (ServiceNow MuleSoft Oracle Integration Cloud Tibco)
Required
CompTIA Security Certification
Highly desired
CySA Certification
Highly desired
CISM Certification
Highly desired
CISA Certification
Highly desired
Familiarity with scripting and programming languages (Python Power Shell.Net)
Nice to have
Familiarity with Cybersecurity platforms (CrowdStrike)
Nice to have
Employment Type
Full Time
