Security Analyst SME
Security Analyst SME
Posted on :
27-12-2024
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Security AnalystExpert
Resource Requirements
Mandatory
- A Bachelors degree in Computer Science Information Systems Engineering Cybersecurity or a related field.
- At least 10 years of Information Security experience in specialized roles such as penetration testing application development and application security testing.
- 710 years in software development or IT security related fields.
- 35 years of experience as a Cloud Security architect or related position.
- Strong understanding of cloud computing technologies including Infrastructure as a Service (IaaS) Platform as a Service (PaaS) and Software as a Service (SaaS).
- Proficient in designing security controls security tools needs/assessment and technology services.
- Experience working with containerized and micro architecture platform as per the industry best practices.
- Excellent understanding of securing SDLC architecture design and IT operations and integrating application security into CI/CD pipeline.
- Experience performing application security code and roles matrix review and practical risk assessments.
- Experience working with threat modeling frameworks (e.g. STRIDE MITRE ATT&CK etc.).
- Experience with common vulnerability management process including scanning analyzing reporting remediation planning and tracking.
- Experience working with application security testing tools such as dynamic application security testing static application security testing mobile application security testing source code analysis vulnerability management.
- Experience with common networking tools (e.g. Wireshark tcpdump netcat).
- Experience with security incident or breach investigation and development of strategies to respond to and recover from an incident or breach.
- Familiar with application vulnerability/security frameworks and standards such as OWASP SANS CVE CWS CVSS etc.
Desired
- Experience in a Health Exchange or its partners would be a plus.
- CompTia Security CISSP or other industry recognized certifications.
- Experience with administering serverless cloudbased enterprise applications and environments.
- Experience and general understanding of objectoriented coding (Java Python .Net etc.).
- Understanding of core Internet protocols and routing (e.g. DNS HTTP HTTPS TCP/IP UDP IPSEC routing protocols etc.).
- Operational understanding of cryptography fundamentals (e.g. SSL/TLS password security filesystem encryption etc.).
- Good understanding of security information and event management tools.
- Excellent understanding of emerging cybersecurity threats.
- Experience with the following Software and Services:
- Cloudflare
- Azure Sentinel
- Tenable Nessus
- Rapid7 AppSec Insight Vulnerability Management
- BurpSuite
- Ostorlab
- Microsoft Defender
- RecordedFuture
- KnowBe4
- Microsoft Purview
- Microsoft Threat Model
- Jira
- Confluence
- SolarWinds Orion
- PowerShell
- GitHub
- GitHub Advanced Security
- SolarWinds ServiceDesk
- SQL Server Studio
- Postman
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
