Information Security Specialist (CISSP)

Cloud Infrastructure, Information Security, IoT, Pen testing, Problem - solving, collaborate, data privacy, interpersonal, lifecycle, self - starter, threat modeling, threat models
Full Time
$130,000 - $140,000

Job Description

Please send resume in WORD format should you be interested in the following Information Security Specialist (CISSP) position located in New York, NY 10018. This is a full-time, direct-hire position with a salary between $130-140K + bonus with benefits. If you’re not interested, please pass along to your colleagues as we do pay referral fees.

 

Location: New York, NY 10018

Term: Full-time, Direct hire

Sponsor/Transfer Visas: NO. and Holders Only. 

Bachelor’s degree required: Required

Salary: $130-140K with 7% bonus

Interview schedule: 4-5 Video interviews

COVID Vaccination and Booster is required

Relocation assistance is provided

 

Required:

 

  • CISSP Certification
  • Red Team Offensive vulnerability management experience
  • Be able to communicate across the entire enterprise
  • Patch management experience
  • Penetration testing experience
  • 3rd party risk management experience

 

The security specialist will possess CISSP certification to identify and communicate potential and emerging information security threats, vulnerabilities, and appropriate technical controls.

 

Problem-solving and the ability to evolve processes to meet business transformation and security requirements are essential elements of this position. The security specialist will drive threat and vulnerability management and support the development of an enterprise-wide security program. The individual in this role will proactively identify and mitigate risk through awareness training, conducting internal and third parties’ assessments.

 

Responsibilities

 

  • Develop and manage the enterprise vulnerability management lifecycle from discovery to remediation throughout the technology and service portfolio
  • Conduct regular assessment of Web and Internal applications, Cloud Infrastructure, APIs, Networks, IoT devices, and mobile applications
  • Work closely with Information Security Engineer and vSOC team to test the efficacy of existing security controls and help create new detection
  • Support the implementation of a comprehensive security program that covers the entire enterprise
  • Continuously evaluate and evolve existing methodologies to solve complex security challenges through vendor engagement and technical services
  • Develop threat models against internal and external systems and design best practices for how they should operate securely
  • Assist with the development of the security education and awareness training program that stays relevant to business activities and current threats
  • Maintain Runbooks to continually improve security testing methodologies and threat modeling and lead readiness initiatives for compliance with domestic and global obligations
  • Well informed of new technologies and advancements in security services and provide regular briefings to Technology management
  • Work in dynamic, fast-paced environments that require regular team interaction and coordination of efforts

 

Qualifications

 

  • Bachelor’s degree
  • 4+ years of experience in information security
  • CISSP certification
  • Working knowledge of common information security standards, such as CIS and OWASP
  • Ability to lead security projects and collaborate with partners and business units across divisions
  • Demonstrated commitment to training, self-study, and maintaining proficiency in the information security domain
  • Motivated self-starter with excellent interpersonal, communication, and presentation skill and the ability to create technical reports
  • Working experience with Pen testing and reporting
  • Web and Cloud applications vulnerability scanners expertise
  • Knowledge of vulnerability management best practices
  • Ability to analyze system and network event logs for incident handling
  • Knowledge of compliance, audit process, third-party risk assessments, and data privacy
Dice Id : 10192616
Position Id : 7499039
Originally Posted : 3 months ago
Have a Job? Post it

Similar Positions

IT Security Specialist
  • Tandym Tech
  • New York, NY, USA
Senior Information Security Officer VP - Perm
  • Atlantic Partners
  • New York, NY, USA
Information Security Analyst
  • Case Interactive
  • New York, NY, USA
IT Security Manager of Identity and Data Governance
  • Xoriant Corporation
  • New York, NY, USA
Information Security Specialist
  • ETS (Educational Testing Service)
  • Princeton, NJ, USA
IT Audit Specialist
  • RedStream Technology LLC
  • New York, NY, USA
Information Security Risk Consultant
  • Michael Page International
  • New York, NY, USA
Information Security Business Analyst
  • VDart, Inc.
  • Jersey City, NJ, USA
Network Security Engineer - IT Associate, Level 1, 2 or 3 (Provisional)
  • CUNY School of Professional Studies
  • New York, NY, USA