| Required||Sr IT Security Analyst||Quincy, MA (Onsite)||No at Remote, Remote, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1993907&uid= From: Shivani, kpg99 [email protected] Reply to: [email protected] Hi , Hope you are doing well. My name is Shiv an i Saini and I'm an IT recruiter at KPG99. Kindly go through the below JD and let me know your interest. Also share with me your updated resume with contact details. Position : Sr IT Security Analyst Location : Quincy, MA (Onsite) Duration : 6+ Months Contract JOB DESCRIPTION.. Must have Application and Infrastructure Security within AWS Strong DevOps background Important Skills Technical - Extensive hands-on experience with implementing security best practices for AWS cloud-hosted applications including the appropriate utilization of AWS security and monitoring tools and resources. Experience with DevOps practices and Continuous Integration/Continuous Development (CI/CD) using GitLab and pipelines. Experience with web and API development technologies. Knowledge of current development practices, including containerized applications, micro service architectures, serverless architectures, etc. Soft - Strong consensus building and interpersonal communications skills, Strong analytical abilities, Strong writing and technical documentation skills. POSITION OVERVIEW: * Assist in efforts to implement a robust MMIS security posture as the MMIS system migrates to the AWS cloud datacenter and beyond. * Work with the MMIS Security Lead and EOHHS and EOTSS enterprise security organizations to identify and remediate infrastructure and application code vulnerabilities and facilitate the operational process of continuous monitoring, remediation based on objective industry standards, measures of risk impact and probability, and reporting to stakeholders. * Participate in efforts to integrate Static Application Security, Dynamic Application Security and Software Composition Analysis Tools (SAST, DAST & SCA) into MMIS Software Development Lifecycle (SDLC) emphasizing "Shift Left" early detection and remediation of potential threats and vulnerabilities, and automation, and process integration. * Participate in efforts to implement security standards and secure common frameworks. * Participate in efforts to produce developer documentation and educational materials as well as create and update learning resources for application security. * Participate in efforts to present and explain threat modelling; as well as institute risk detection and risk mitigation strategies to business and IT stakeholders (including leadership) and effectively defend recommendations, where necessary. * Participate in efforts to define MMIS technical security software environment requirements. QUALIFICATIONS: Preferred Skills and Abilities: * Extensive hands-on experience with implementing security best practices for AWS cloud-hosted applications including the appropriate utilization of AWS security and monitoring tools and resources. * Experience with DevOps practices and Continuous Integration/Continuous Development (CI/CD) using GitLab and pipelines. * Experience with web and API development technologies. * Knowledge of current development practices, including containerized applications, micro service architectures, serverless architectures, etc. * Experience with Medicaid systems or in IT healthcare settings desired. EDUCATION AND EXPERIENCE: * Associate degree in Computer Science, Information Systems/Technology, Business Administration, or other related field, or equivalent work experience. * Professional security certification: CompTIA Security+, AWS Security Specialty, (ISC)2 CCSP, GIAC GSEC or GWEB, or other similar credentials a plus. * 3+ years of experience working in application and infrastructure security roles. * Strong technical knowledge of internet security issues, cloud architectures, and threat landscape. * Strong technical understanding of application and cloud security threats and vulnerabilities, including Common Vulnerabilities & Exposures (CVE), Common Weakness Enumeration (CWE), OWASP top 10, SANS top 25, etc. * Extensive knowledge of and experience with security standards such as NIST- 800-53, FED Ramp, and ISO 27xxx. * Strong understanding of AWS networking and security tools and resources. * Strong technical knowledge of AWS security and network management tools and resources. * Strong background in web application development and/or code auditing. * Strong consensus building and interpersonal communications skills * Strong analytical abilities. * Strong writing and technical documentation skills. Thanks & Regards Shivani Saini ||Technical Recruiter [email protected] Direct--609-662-6116 KPG99,INC 3240 E STATE ST EXT Hamilton, NJ 08619 www.kpgtech.com Linkedin ID https://www.linkedin.com/in/shivani-saini-1397311a2 Keywords: continuous integration continuous deployment information technology golang Idaho Massachusetts New Jersey Required||Sr IT Security Analyst||Quincy, MA (Onsite)||No [email protected] http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1993907&uid= |
| [email protected] View All |
| 04:11 AM 07-Dec-24 |