Please login/register to apply for this job.
25 Jan 2022
Full-Time Director of IT Security Engineering (Vulnerability and Application Security)
Job Description
Director
10 Years
Bachelor’s degree
Information Technology
Financial Services
$161,000 – $170,000
1
No
Only US citizens and Greencard holders
Job Description:
- The purpose of Cybersecurity Engineering and Operations is to provide outstanding and versatile security services to the enterprises for the Enterprise Vulnerability Management and Application Security capabilities, driving the Agile squads to engineer, innovate, and implement best-in-class security solutions.
- The purpose is to bring the best of security solutions to protect assets and systems.
- This role is a People Leader role and the security engineers aligned will directly report into this position. As a People Leader (functional manager), a strong candidate will have experience guiding & coaching staff as it relates to the capability, identifying areas to optimize the capability, and stretching the team to meet their maximum performance.
Responsibilities:
- Be overall responsible for the Enterprise Vulnerability Management and Application Security Engineering teams
- Influence the direction of the Vulnerability Management and Application Security roadmaps by proactively looking forward on security gaps that require planning
- Participate in iteration planning, backlog management, and other agile ceremonies with Scrum Masters
- Lead talent planning, career development mentoring, coaching and feedback to squad members and remote employees while evaluating team member performance leading to continuous optimization of the squads.
- Build partnership with collaborators and management up to date with status of major deliverables and sustain strong working relation with business partners, peers and agile squad to enhance business value
Qualifications:
- Strong Information Security experience in vulnerability management, scanning, risk analysis, infrastructure security, patch management, authentication, authorization, encryption, logging, application security testing (including SAST/DAST/RASP), developing, adding, and testing security features within applications to prevent security vulnerabilities both on premise and cloud
- Strong people leadership skills with experience leading Agile security engineering team
- Strong communication skills, including executive communication to senior leadership
- Strong, proven experience in Cybersecurity engineering, design, implementation, and documentation. Experience with vulnerability management and application security solutions such as (Rapid 7, Nessus, Tripwire, Qualys, Arxan, Black Duck, CA/Veracode App Security Platform, Checkmarx, Fortify, IBM Security, AppScan) which includes implementation, upgradation, complex analysis, and integration into production is helpful
- Knowledge of industry-standard Information Security frameworks, policies and procedures
- Security certifications (CEH, CCSP, CISSP, OSCP) are also a plus
MUST HAVE:
Vulnerability Management and Application Security
Provide solutions in vulnerability management and application security such as (Rapid 7, Nessus, Tripwire, Qualys, Arxan, Black Duck, CA/Veracode App Security Platform, Checkmarx, Fortify, IBM Security, AppScan) which includes implementation, upgradation, complex analysis, and integration into production
Excellent communication skills, including executive communication to senior leadership
People Leader (functional manager)
NICE TO HAVE:
Security certifications (CEH, CCSP, CISSP, OSCP) are also a plus