Information Technology Security Specialist
Position:
Information Security SpecialistDepartment:
Information TechnologySupervisor:
IT Director Who We Are:
Window Nation IT is a team of professionals with varying specialties and from diverse backgrounds.
We innovate every day through modern forward-looking technologies to create opportunities for Window Nation's technology and digital challenges with our consumers, and at the workplace.
We are not afraid of change.
We collaborate with our internal stakeholders around the country to deliver products and services to create tangible business values.
This position is not eligible for Visa Sponsorship.
Position SummaryAs an Expert in Cyber/Information Security, you will be a major part of the Infrastructure Security and Data Protection team at Window Nation.
You will be responsible for establishing and maintaining security products designed to mitigate IT risks across Window Nation to ensure that information assets are adequately protected.
Also, be an integral part for the identification, evaluation and reporting of information security risks in a manner that meets compliance and regulatory requirements, aligning with and supporting the risk posture of the company.
Act as a security business partner for the IT Product development that represents IT Security in various core meetings.
Job ResponsibilitiesConduct systematic security assessments of on-premises and Cloud Solutions, and the associated infrastructure to identify security risks.
Conduct periodic security awareness training exercises including but not limited to phishing campaigns, Works directly with IT leadership, and IT Customers to facilitate business IT risk assessment and risk management processes and works with stakeholders through the enterprise on identifying acceptable levels of residual risk.
Works closely with Business Application Managers and Application Developers, other functional leaders and SMEs to ensure adequate security solutions are in place throughout all IT products and platforms to mitigate identified risks sufficiently and to meet business objectives and regulatory requirements.
Collaborates on team learning needs and engages in opportunities to increase knowledge in security areas.
Gathers first-hand information on security requirements to find the most cost-effective improvements in security posture.
Develop and present security documents and reports clearly, concisely, and effectively.
Act as team member or leader of a Cyber Security Incident Response Team.
Preserves evidence collected during cyber security investigations to prevent loss of evidentiary value.
Maintains expert skill and knowledge level in the area of cyber security.
Manages time and resources efficiently to accommodate multiple assignments.
Contribute to the DevSecOps roadmap at Window Nation.
Champion the security approach to culture, automation, and platform design that integrates security as a shared responsibility throughout the entire IT lifecycle aka shift leftA'.
Develop the business, information and technical artifacts that constitute the enterprise information security architecture and solutions.
Provide security governance during the development, construction, and ongoing maintenance to the next generation cloud services solutions in Microsoft Azure and and other Cloud adoption initiatives.
Gains Window Nation in the Market (WNiM) insights and understanding of business requirements and apply the Information Security policies and procedures to meet these business requirements in the right time, without compromising the overall information security.
Perform periodic security reviews to ensure localized policies agree with the Global Security policies and local legal requirements.
Required ExperienceBachelor's degree in an IS/IT related field7
years of advanced IT skills with high level of information security controls and auditing experience.
Experience with security assessment methods and principles behind penetration testingKnowledge of cloud technologies, with principal and policy-based security design methodology, specifically within Microsoft Azure Deployments (PAAS/IAAS/SAAS solution models).
Demonstrated experience in identifying risk and development of mitigation plansExperience securing cloud services in Azure.
Knowledge of security related legislation/regulations/standards with emphasis on PCI, and data privacy.
Some DevSecOps experience.
Preferred ExperienceInformation security related training or certifications such as Center for Internet Security (CIS), CISSP, CCSP and CEH certificationsInformation Security Management framework experience (eg CIS, OWASP, Mittre attack and ISO27001)Penetration testing experienceSIEM deployment experience.
Estimated Salary: $20 to $28 per hour based on qualifications.
Information Security SpecialistDepartment:
Information TechnologySupervisor:
IT Director Who We Are:
Window Nation IT is a team of professionals with varying specialties and from diverse backgrounds.
We innovate every day through modern forward-looking technologies to create opportunities for Window Nation's technology and digital challenges with our consumers, and at the workplace.
We are not afraid of change.
We collaborate with our internal stakeholders around the country to deliver products and services to create tangible business values.
This position is not eligible for Visa Sponsorship.
Position SummaryAs an Expert in Cyber/Information Security, you will be a major part of the Infrastructure Security and Data Protection team at Window Nation.
You will be responsible for establishing and maintaining security products designed to mitigate IT risks across Window Nation to ensure that information assets are adequately protected.
Also, be an integral part for the identification, evaluation and reporting of information security risks in a manner that meets compliance and regulatory requirements, aligning with and supporting the risk posture of the company.
Act as a security business partner for the IT Product development that represents IT Security in various core meetings.
Job ResponsibilitiesConduct systematic security assessments of on-premises and Cloud Solutions, and the associated infrastructure to identify security risks.
Conduct periodic security awareness training exercises including but not limited to phishing campaigns, Works directly with IT leadership, and IT Customers to facilitate business IT risk assessment and risk management processes and works with stakeholders through the enterprise on identifying acceptable levels of residual risk.
Works closely with Business Application Managers and Application Developers, other functional leaders and SMEs to ensure adequate security solutions are in place throughout all IT products and platforms to mitigate identified risks sufficiently and to meet business objectives and regulatory requirements.
Collaborates on team learning needs and engages in opportunities to increase knowledge in security areas.
Gathers first-hand information on security requirements to find the most cost-effective improvements in security posture.
Develop and present security documents and reports clearly, concisely, and effectively.
Act as team member or leader of a Cyber Security Incident Response Team.
Preserves evidence collected during cyber security investigations to prevent loss of evidentiary value.
Maintains expert skill and knowledge level in the area of cyber security.
Manages time and resources efficiently to accommodate multiple assignments.
Contribute to the DevSecOps roadmap at Window Nation.
Champion the security approach to culture, automation, and platform design that integrates security as a shared responsibility throughout the entire IT lifecycle aka shift leftA'.
Develop the business, information and technical artifacts that constitute the enterprise information security architecture and solutions.
Provide security governance during the development, construction, and ongoing maintenance to the next generation cloud services solutions in Microsoft Azure and and other Cloud adoption initiatives.
Gains Window Nation in the Market (WNiM) insights and understanding of business requirements and apply the Information Security policies and procedures to meet these business requirements in the right time, without compromising the overall information security.
Perform periodic security reviews to ensure localized policies agree with the Global Security policies and local legal requirements.
Required ExperienceBachelor's degree in an IS/IT related field7
years of advanced IT skills with high level of information security controls and auditing experience.
Experience with security assessment methods and principles behind penetration testingKnowledge of cloud technologies, with principal and policy-based security design methodology, specifically within Microsoft Azure Deployments (PAAS/IAAS/SAAS solution models).
Demonstrated experience in identifying risk and development of mitigation plansExperience securing cloud services in Azure.
Knowledge of security related legislation/regulations/standards with emphasis on PCI, and data privacy.
Some DevSecOps experience.
Preferred ExperienceInformation security related training or certifications such as Center for Internet Security (CIS), CISSP, CCSP and CEH certificationsInformation Security Management framework experience (eg CIS, OWASP, Mittre attack and ISO27001)Penetration testing experienceSIEM deployment experience.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
