Randstad Information Security Specialist in Boston, Massachusetts
Information Security Specialist
salary:$125,000 - $135,000 per year
date posted:Tuesday, March 13, 2018
This job requires one to perform security assessments and evaluate risk for both in-house developed products and outsourced services as well as use that security knowledge to provide guidance to development and business. One should have broad experience in the information security field in addition to being familiar with pentesting. A deep knowledge of risk and how it could affect the business is equally as important as is an understanding of ethical hacking and performing proper red teaming activities.
Clear communication skills are required.
Knowledge of popular cybersecurity frameworks and financial industry security-related regulatory requirements a plus.
Perform application security and red team assessments, write reports, and communicate results to development and business
Work with a wide range of security tools for performing: Static Source Code Analysis, Dynamic Application Security Testing, Open Source Analysis, and Security Assessments
Provide guidance to business and development for addressing security issues or questions
Review application architecture and design documents from a security standpoint and supply feedback and guidance to product teams
Assess in-house developed applications and outsourced services from a risk standpoint
Help improve on team and department processes, procedures, and standards
Work hand-in-hand with other security teams to enhance our overall security program
Technical knowledge of security issues, techniques and implications across all existing computer platforms including cloud providers required
Clear communication skills required
General understanding of security implications for architecture design and risk is required
Knowledge of popular cybersecurity frameworks and financial industry security-related regulatory requirements a plus
Education Required: Degree qualified in Computers Science, Information Systems or other related discipline, or equivalent work experience.
Experience Required: At least 5 years
Special Qualifications: Has completed one of the following Certifications and/or Professionalization status: CCIE (certified CISCO Internet Engineer), MCSE certification; GIAC Certified Windows Security Administrator (GCWN); GSEC, GCFW, GCIA, GCIH, GISO, GSNA, GCFA, GSLC; CISA, CISSP certifications; CIPP (Certified Information Privacy Professional).