Roles and Responsibilities

• Supports the service owner and may serve as a service offering lead in the delivery of security technologies.
• Leads security assessments of technology systems and recommends system changes to ensure adherence to standards, policy, guidelines, strategies, and security best business practices.
• Generating, gathering, and tracking security metrics, developing scorecards for the metrics, and communicating the results to technology leadership.
• Participates in planning sessions related to projects or new technologies to implement process improvement within the functional area.
• Facilitates gate review, change advisory boards, and IT operational meetings.  
• Works to consistently learn and share advanced skills and practices that promote team excellence.
• Builds relationships with developers, stakeholders, security champions, and scrum masters to incorporate security principles into engineering design and deployments.
• Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads.
• Identify vulnerabilities in code through automated and manual assessments, and promote quick remediation.
• Regularly research and learn new tactics, techniques, and procedures (TTP) in public and closed forums, and work with colleagues to assess risk and implement/validate controls.
• Provides subject matter expertise to resolve problems, and security incidents and conduct forensic investigations.

Qualifications

• Hands-on experience performing maintaining, upgrading, testing, and/or implementing firewall configuration changes and assessing impacts of changes on applications and other related systems
• Familiarity with and ability to investigate Intrusion Detection System (IDS) and/or Protocol-base Intrusion Detection System (PIDS) alerts
• Understands the TCP/IP stack with prior hands-on expertise in securing diverse LAN, WAN, VPN, and wireless environments for large organizations
• Basic understanding of ICS/SCADA cybersecurity concerns.

Posted By