Position: IT Security Specialist 10+
Location: Columbus, Oh (Only Locals)
Duration: Long Term
Client: State of Ohio
As a member of the ESS Security & Infrastructure Operations team, this senior level IT Security will support the team by leading major security initiatives, implementations, and integrations. Additionally, the resource will drive application and infrastructure security within multiple platforms to minimize application vulnerabilities and application risk:
Security Integration: Integrate security as an integral part of the CI/CD pipeline, automating security testing and scanning processes.
Vulnerability Management: Identify, assess, and manage security vulnerabilities throughout the SDLC.
Security Automation: Implement and maintain security automation tools and scripts to streamline security processes.
Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to identify potential security vulnerabilities.
Security Policy and Compliance: Enforce security policies and ensure compliance with agency policies and relevant regulations and standards.
Collaboration: Work closely with other IT teams and stakeholders to ensure security best practices are followed.
Incident Response: Participate in security incident response and recovery efforts.
Continuous Improvement: Continuously improve security practices and tools based on industry best practices and emerging threats.
Documentation: Document security processes, procedures, and findings.
| Skill | Required / Desired | Amount | of Experience | ||||
College Degree | Required | 4 | Years |
| ||||
Proficiency with security scanning and vulnerability management tools (Qualys, Checkmarx, AutoRabit CodeScan) | Required | 4 | Years |
Proficiency with DevOps platforms (Azure DevOps, Copado) | Required | 4 | Years |
Proficiency with operating systems (Windows, Linux) | Required | 4 | Years |
Experience with administering (security controls and management) Cloud computing platforms (Salesforce) | Required | 4 | Years |
Working knowledge of security frameworks and standards (OWASP Top10, SANS 25, NIST SP 800-53, etc.) | Required | 4 | Years |
Working knowledge of web application security tools (F5 Web Application Firewall, Cloudflare, AppOmni) | Required | 4 | Years |
Working knowledge of SIEM/SOAR tools (Chronicle, Splunk) | Required | 4 | Years |
Working knowledge of integration platforms (ServiceNow, MuleSoft, Oracle Integration Cloud, Tibco) | Required | 4 | Years |
CompTIA Security+ Certification | Highly desired |
|
|
CySA+ Certification | Highly desired |
|
|
CISM Certification | Highly desired |
|
|
CISA Certification | Highly desired |
|
|
Familiarity with scripting and programming languages (Python, Power Shell, .Net) | Nice to have |
|
|
Familiarity with Cybersecurity platforms (CrowdStrike) | Nice to have | ||
—
Thanks & Regards, Nischal Manem Senior technical recruiter Email: Nischal.manem@virtuallabsus.com Virtual Labs USA | India |Europe | Australia |
—
You received this message because you are subscribed to the Google Groups “TodayC2C” group.
To unsubscribe from this group and stop receiving emails from it, send an email to todayc2c+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/todayc2c/CAGtvFUG_OJ_oGXpuPG_gyj%2B-4GAnZAOPb69C0fqSYUaTxXde%2BA%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.