Randstad Security Engineer in Cary, North Carolina
Monday, October 10, 2016
This role has the responsibility to establish, implement and maintain scanning and securing all applications. He or she will ensure services are delivered in accordance with agreed business requirements and provide the Service Manager with an overview of risk exposure from internal and external applications. He or she will interacts with other security departments with regards to assessing the risk deriving from the findings.
Work with Service Manager to establish and maintain the vision & process framework for managing WAS service.
Provide business and application owners with clear information about current situation regarding the application security, in an automated and rapid way.
Validate all findings in scope from security scans.
Create reports for application owners utilizing WAS reporting tools.
Participate in discussions with application owners or designated technical contacts to analyze and explain results of the assessments as well as determine remediation steps/time needed.
Contribute to the ongoing enhancement of the company s vulnerability assessment capabilities.
Work with analysts to collect information from scans run by them.
Report the security status in terms of the services to the SM so that he/she can report to relevant bodies, especially InfoSec Management, InfoSec Strategy, Governance and Policies, Business Engagement, and Risk Assessors.
Reviews exception and manages escalation of unaccepted deviations. Works with service providers and InfoSec Risk Management in cases of different assessments of risk.
On-boarding of new applications, systems, service providers etc. Integration of new service providers into the Security Configuration Management processes and activities.