Randstad Information Security Specialist in Boston, Massachusetts

Information Security Specialist

job details:

  • location:Boston, MA

  • salary:$125,000 - $135,000 per year

  • date posted:Tuesday, March 13, 2018

  • job type:Permanent

  • industry:Information Technology

  • reference:607699

job description

This job requires one to perform security assessments and evaluate risk for both in-house developed products and outsourced services as well as use that security knowledge to provide guidance to development and business. One should have broad experience in the information security field in addition to being familiar with pentesting. A deep knowledge of risk and how it could affect the business is equally as important as is an understanding of ethical hacking and performing proper red teaming activities.

Clear communication skills are required.

Knowledge of popular cybersecurity frameworks and financial industry security-related regulatory requirements a plus.

  • Perform application security and red team assessments, write reports, and communicate results to development and business

  • Work with a wide range of security tools for performing: Static Source Code Analysis, Dynamic Application Security Testing, Open Source Analysis, and Security Assessments

  • Provide guidance to business and development for addressing security issues or questions

  • Review application architecture and design documents from a security standpoint and supply feedback and guidance to product teams

  • Assess in-house developed applications and outsourced services from a risk standpoint

  • Help improve on team and department processes, procedures, and standards

  • Work hand-in-hand with other security teams to enhance our overall security program

  • Technical knowledge of security issues, techniques and implications across all existing computer platforms including cloud providers required

  • Clear communication skills required

  • General understanding of security implications for architecture design and risk is required

  • Knowledge of popular cybersecurity frameworks and financial industry security-related regulatory requirements a plus

Education Required: Degree qualified in Computers Science, Information Systems or other related discipline, or equivalent work experience.

  • Experience Required: At least 5 years

  • Special Qualifications: Has completed one of the following Certifications and/or Professionalization status: CCIE (certified CISCO Internet Engineer), MCSE certification; GIAC Certified Windows Security Administrator (GCWN); GSEC, GCFW, GCIA, GCIH, GISO, GSNA, GCFA, GSLC; CISA, CISSP certifications; CIPP (Certified Information Privacy Professional).