Cyber Security Specialist

Bluewater Hayes, Inc. Published: May 24, 2018
Location
Experience Level
Associate
Job Function
Manufacturing, Information Technology
Date Posted
5/23/18

Description

The Cyber Security Specialist will provide technical, compliance, and best practice information assurance expertise to global business operations. Working within the Corporate Business Technology/Information Assurance and Compliance Team, responsibilities will include the design, implementation, assessment, and monitoring of diverse cyber solutions for a global enterprise.

Specific responsibilities will range from defining processes and controls, assisting with the deployments of business and security solutions, and performing cyber security assessments to supporting the monitoring of their global technology ecosystem and cyber incident response activities. The candidate will require diverse technical skills, strong foundation of cyber security skills, and outstanding communication skills.

Specific responsibilities may include, but are not limited to:

 

  • Developing information assurance-related documentation including, but not limited to, hardening guides, corporate standards, testing and assessment plans, testing and assessment reports, risk management documents, and risk reports.
  • Driving adoption of standard processes and functionality
  • Assure ongoing alignment with information assurance / cyber security best practices and regulatory requirements
  • Working with leadership to define and develop risk assessment, compliance, and reporting processes
  • Applying current Information Assurance concepts and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security;
  • Working closely with technology and business teams to ensure that security requirements are defined and implemented in accordance with applicable governance and requirements;
  • Design, create, and execute vulnerability testing/analysis, remediation, and continuous management;
  • Active monitoring, alerting, and responding to cyber events and incidents within their technology ecosystem
  • Work with internal developers, systems engineers, and commercial product vendors in the design and evaluation of systems, networks, and database products;
  • Represent program security interests at business meetings
  • Engage in issue resolution and development review/planning meetings; and
  • Stakeholder communications and management

Required Skills:

  • Experience implementing/assessing against standards such as Common Criteria, FIPS 199, NIST 800-53, NIST 800-37, and SOX;
  • Experience developing technical system documentation (i.e. SDD, SSP, ITCP, RA, POA&M)
  •  Experience with the System Development Lifecycle (SDLC)
  • Experience with security architecture, design, and engineering of application and system development
  • Experience with enterprise security services (e.g. Single Sign-on, IdAM, SAML, web service security)
  • Experience with web application and database security
  • Experience with secure coding to include static code review and secure code development (Java, .NET, Perl, Python, and/or SQL skills preferred)
  • Strong oral and written communications skills

Preferred Skills:

  • Experience analyzing functional business requirements and designs
  • Experience on mission critical projects
  • Experience with project management or task leadership
  • Ability to work within a diverse team environment
  • Strong facilitation and analytical skills
  • Demonstrated business acumen, problem solving skills, and relationship management skills
  • Ability to work effectively with continuous change and short deadlines
  • Knowledge of industrial/manufacturing industry
  • Knowledge or understanding of program development, infrastructure architecture, and database modeling.

 

Required Experience:

  • Bachelor’s degree required; Computer Science or Computer Engineering majors preferred or equivalent work experience
  • Information Assurance or Cyber Security Related Certification(s) Examples – Sec+, GSEC, CEH, SSCP, CISSP
  • 3 to 5 years of related professional work experience as it relates to job responsibilities outlined above
  • 3+ years of application and/or system implementation, deployment, and enterprise integration
Apply
Drop files here browse files ...

Related Jobs

Strategic Sourcing Manager   Charlotte, NC
May 24, 2018

Stay Updated
Recent Job Postings
Job Title
Like What You See?
Let’s Get
Started Today
Are you sure you want to delete this file?
/