Application Security Operations Lead.......Dearborn, MI - Hybrid Onsite

  • Dearborn, MI
  • Posted 1 day ago | Updated 1 day ago

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - Independent

Skills

CISSP OR CISM OR CYSA OR CEH
Vulnerability
Threat
Application
Secure
Cloud
Lead*

Job Details

Job Title: Security Operations Lead

Monday and Friday remote, Tuesday - Thursday onsite in Dearborn, MI

Minimum Qualifications and Job Requirements: 3 - 5 years security experience ISO experience or certification

Essential Job Functions: Support

* Vulnerability Assessment

* Threat Intelligence

* Application Security

* Secure Cloud Configuration

* Identity and Access Management

Job Summary: * *Application Security Operations:*

** Oversee the operational use and effectiveness of application security tools, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), and Software Composition Analysis (SCA).

** Collaborate with development and DevOps teams to integrate security testing into the CI/CD pipeline and ensure vulnerabilities identified by these tools are triaged and remediated effectively.

** Provide guidance on interpreting scan results and prioritizing remediation efforts for application-level vulnerabilities.

* *Cloud Security :*

** In-depth knowledge and hands-on experience with Microsoft Azure security services, specifically Microsoft Defender for Cloud, Entra ID and Azure Sentinel (SIEM/SOAR)

** Proficiency in assessing and hardening Azure environments, including IaaS, PaaS, and network security configurations.

* *Infrastructure Vulnerability Management:*

* Proactively manage and conduct regular vulnerability assessments and remediation efforts for our infrastructure using Microsoft Defender for Cloud

* Ensure continuous security posture management for cloud and hybrid environments, identifying misconfigurations and security weaknesses.

* Work with relevant teams to prioritize and implement recommended security controls and patches identified through Defender for Cloud.

_Note this is a hybrid position meaning a combination of remote and on-site work in Dearborn, MI. Current hybrid policy is 3 days in the office, Tue-Thur, with remote days on Monday and Friday. Events, issues or exceptions might increase or reduce these requirements for a given week._

*Certifications (one or more highly preferred):*

* CISSP (Certified Information Systems Security Professional)

* CISM (Certified Information Security Manager)

* *AZ-500 (Microsoft Certified: Azure Security Engineer Associate)*

* CySA+ (CompTIA Cybersecurity Analyst+)

* CEH (Certified Ethical Hacker)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.