Job Details

ID #46079233
State New York
City New york city
Job type Permanent
Salary USD $130,000 - $140,000 130000 - 140000
Source AMS Staffing Inc.
Showed 2022-09-29
Date 2022-09-11
Deadline 2022-11-09
Category Et cetera
Create resume

Information Security Specialist (CISSP)

New York, New york city, 10018 New york city USA

Vacancy expired!

Please send resume in WORD format should you be interested in the following Information Security Specialist (CISSP) position located in New York, NY 10018. This is a full-time, direct-hire position with a salary between $130-140K + bonus with benefits. If you’re not interested, please pass along to your colleagues as we do pay referral fees.

Location: New York, NY 10018

Term: Full-time, Direct hire

Sponsor/Transfer Visas: NO. and Holders Only.

Bachelor’s degree required: Required

Salary: $130-140K with 7% bonus

Interview schedule: 4-5 Video interviewsCOVID Vaccination and Booster is requiredRelocation assistance is provided Required:
  • CISSP Certification
  • Red Team Offensive vulnerability management experience
  • Be able to communicate across the entire enterprise
  • Patch management experience
  • Penetration testing experience
  • 3rd party risk management experience
The security specialist will possess CISSP certification to identify and communicate potential and emerging information security threats, vulnerabilities, and appropriate technical controls. Problem-solving and the ability to evolve processes to meet business transformation and security requirements are essential elements of this position. The security specialist will drive threat and vulnerability management and support the development of an enterprise-wide security program. The individual in this role will proactively identify and mitigate risk through awareness training, conducting internal and third parties’ assessments.

Responsibilities
  • Develop and manage the enterprise vulnerability management lifecycle from discovery to remediation throughout the technology and service portfolio
  • Conduct regular assessment of Web and Internal applications, Cloud Infrastructure, APIs, Networks, IoT devices, and mobile applications
  • Work closely with Information Security Engineer and vSOC team to test the efficacy of existing security controls and help create new detection
  • Support the implementation of a comprehensive security program that covers the entire enterprise
  • Continuously evaluate and evolve existing methodologies to solve complex security challenges through vendor engagement and technical services
  • Develop threat models against internal and external systems and design best practices for how they should operate securely
  • Assist with the development of the security education and awareness training program that stays relevant to business activities and current threats
  • Maintain Runbooks to continually improve security testing methodologies and threat modeling and lead readiness initiatives for compliance with domestic and global obligations
  • Well informed of new technologies and advancements in security services and provide regular briefings to Technology management
  • Work in dynamic, fast-paced environments that require regular team interaction and coordination of efforts

Qualifications
  • Bachelor’s degree
  • 4+ years of experience in information security
  • CISSP certification
  • Working knowledge of common information security standards, such as CIS and OWASP
  • Ability to lead security projects and collaborate with partners and business units across divisions
  • Demonstrated commitment to training, self-study, and maintaining proficiency in the information security domain
  • Motivated self-starter with excellent interpersonal, communication, and presentation skill and the ability to create technical reports
  • Working experience with Pen testing and reporting
  • Web and Cloud applications vulnerability scanners expertise
  • Knowledge of vulnerability management best practices
  • Ability to analyze system and network event logs for incident handling
  • Knowledge of compliance, audit process, third-party risk assessments, and data privacy

Vacancy expired!

Subscribe Report job