Information Security Specialist (CISSP)

at AMS Staffing Solutions
Published March 7, 2023
Location New York, NY
Category Default  
Job Type Full-time  

Description

Please send resume in WORD format should you be interested in the following Information Security Specialist (CISSP) position located in New York, NY 10018. This is a full-time, direct-hire position with a salary between $130-140K + bonus with benefits. If you’re not interested, please pass along to your colleagues as we do pay referral fees. Location: New York, NY 10018Term: Full-time, Direct hireSponsor/Transfer Visas: NO. and Holders Only. Bachelor’s degree required: RequiredSalary: $130-140K with 7% bonusInterview schedule: 4-5 Video interviewsCOVID Vaccination and Booster is requiredRelocation assistance is provided Required: CISSP CertificationRed Team Offensive vulnerability management experienceBe able to communicate across the entire enterprisePatch management experiencePenetration testing experience3rd party risk management experience The security specialist will possess CISSP certification to identify and communicate potential and emerging information security threats, vulnerabilities, and appropriate technical controls. Problem-solving and the ability to evolve processes to meet business transformation and security requirements are essential elements of this position. The security specialist will drive threat and vulnerability management and support the development of an enterprise-wide security program. The individual in this role will proactively identify and mitigate risk through awareness training, conducting internal and third parties’ assessments. Responsibilities Develop and manage the enterprise vulnerability management lifecycle from discovery to remediation throughout the technology and service portfolioConduct regular assessment of Web and Internal applications, Cloud Infrastructure, APIs, Networks, IoT devices, and mobile applicationsWork closely with Information Security Engineer and vSOC team to test the efficacy of existing security controls and help create new detectionSupport the implementation of a comprehensive security program that covers the entire enterpriseContinuously evaluate and evolve existing methodologies to solve complex security challenges through vendor engagement and technical servicesDevelop threat models against internal and external systems and design best practices for how they should operate securelyAssist with the development of the security education and awareness training program that stays relevant to business activities and current threatsMaintain Runbooks to continually improve security testing methodologies and threat modeling and lead readiness initiatives for compliance with domestic and global obligationsWell informed of new technologies and advancements in security services and provide regular briefings to Technology managementWork in dynamic, fast-paced environments that require regular team interaction and coordination of efforts Qualifications Bachelor’s degree4+ years of experience in information securityCISSP certificationWorking knowledge of common information security standards, such as CIS and OWASPAbility to lead security projects and collaborate with partners and business units across divisionsDemonstrated commitment to training, self-study, and maintaining proficiency in the information security domainMotivated self-starter with excellent interpersonal, communication, and presentation skill and the ability to create technical reportsWorking experience with Pen testing and reportingWeb and Cloud applications vulnerability scanners expertiseKnowledge of vulnerability management best practicesAbility to analyze system and network event logs for incident handlingKnowledge of compliance, audit process, third-party risk assessments, and data privacy

Drop files here browse files ...