Salary $105,000 - $130,000 a year job type full-time
Full job description
Location: various locations
Work type: full time regular
Job no: 500034
Categories: information technology, remote work, featured
Application closes: open until filled
Design, implement and manage data, systems and information security architectures to protect the integrity, availability and confidentiality of electronic information owned, controlled or managed by the companyThis role requires a candidate with solid security experience, specifically in the cloud arenaThis is not a cloud professional doing some security work, but a security person that provides security in the cloud.
What you`ll do:
Provide level 1 triage support for alerts within a cloud security posture management (cspm) platform
The analysis of application and service stack misconfigurations as requested by incident response team leadership in the process of determining sensitive data leakage
Conducting periodic reviews of cloud deployed application and service stack security controls based upon best practices documentation
Provide infrastructure as code governance over policies implemented within tools in the ci/cd pipeline
Reviewing web application firewalls (wafs) logs as it pertains to traffic flow optimization and rule definitions
Cross functional team collaboration for determining the appropriate implementation of security controls using a risk-based approach
Conducting risk assessments of security controls as they pertain to enterprise it assets and related potential business impact
Collaborate with team members on process definitions/improvements for documentation purposes.
Identify, define, develop, implement and ensure the ethical administration of all security policies, processes and procedures; investigate possible security exceptions; maintain and document security controls.
Process requests for login ids, passwords, data accesses and e-mail /internet requestsDevelop, review and approve security administration guidelines, processes, and procedures.
Report violations (internal and external sources) to the security cirt (computer incident response team) and participate in cirt activities such as investigating internal and external security incidents, excess individual access authorities, and distributed security responsibilities.
Produce reporting for primary security tools such as authentication directories, firewalls, anti-virus and intrusion detection software.
Participate in analyst duties related to security architecture and infrastructure to include supporting the design, analysis, programming and testing of security products and services; collecting and analyzing relevant data related to security trends and technologies; and supporting development of technical and non-technical security designs to satisfy business requirements.
Participate with team members in upgrades to hardware and software across all platforms, completing assigned tasks for operating system and security software upgrades.
Participate in projects where security needs are identified, reviewing project designs for conformance to security standards.
Identify and evaluate security processes to enhance productivity and effectiveness, keeping abreast of industry trends, threats, risks and controls.
Work closely with customer business environments in order to provide appropriate solutions and process improvements.
Consult on company-wide projects where security needs are identified; review all project proposal and design documents for security inclusion.
Identify and evaluate security products to enhance current productivity and effectivenessMake recommendations to department management based on evaluation and assessment.
Maintain strong professional relations with internal customer areas and outside vendors, keeping abreast of industry trends, threats, risks and controls.
Responsible for complying with all company information services policies and standards.
Responsible for ensuring appropriate security and privacy measures are implemented on technology solutions to protect company data from intentional or accidental misuse.
This job posting is reflective of the is security analyst essential functions, qualifications, and physical requirementsThe sr is security analyst level has variable essential functions, qualifications and physical requirementsCompetency and skill set will determine level of placement within the posted job family.
Proven experience in system design, research, analysis, testing and implementation
Detailed knowledge in specialized security technical tools and techniques and their implementation and administration
Working knowledge of project methodology, and policy development and implementation
Understanding of government regulations such as security, privacy, audit reporting, etc.
Provide security analysis and system administration to protect the integrity, availability and confidentiality of electronic information owned, controlled or managed by the company.
Education (or equivalent work experience) in computer science, information systems or business administration
Strong communication skills, good customer relations and team player experience with aws cdk in a devsecops environment
Ability to determine application and or service stack risk from analyzing associated security controls or lack thereof
General knowledge of ci/cd pipeline architecture and tools
Experience using application security scanning tools within a ci/cd context
Experience with aws security tools and services
Knowledge of the owasp top 10 vulnerabilities, manual exploitation for proof of concept purposes, and remediation
Understanding of scripted/command languages such as powershell, python, typescript, ruby, bash, etc.
Understanding of compiled languages such as java, c etc.
Experience using source code repository technologies for version control purposes
You help promote a culture of diversity and inclusion within the department and the larger organizationYou value different ideas and opinionsYou listen courageously and remain curious in all that you do.
You are able to work remotely and have access to high-speed internet.
Experience with microservices, container, and data security best practices
Experience automating routine work using for increased productivity
Experience with log analysis for identifying and triaging security events and incidents
Cissp (certified information systems security professional), ccsk (certificate of cloud security knowledge), ccsp (certified cloud security professional), aws certified security - specialty certifications
Proven leadership, business judgment, negotiation skills and customer relations with ability to operate independently but within team, division, operation and corporate guidelines
What we can offer you:
A diverse workplace where associates feel a sense of belonging.
An organization that feels like a small, close-knit community and has the strength of a fortune 500 company.
Tuition reimbursement, training and career development.
Comprehensive benefits plan that includes medical, dental, vision, disability and life insurance.
Flexible spending accounts for healthcare and childcare needs.
401(k) plan with a 2% company contribution and 6% company match.
Competitive pay with an opportunity for incentives for all associates.
Flexible work schedules with a healthy amount of paid time off.
For more information regarding available benefits, please visit our career site.
Salary range depending on experience: $105,000 - $130,000
Pay commensurate with experience.
Mutual of omaha:
Mutual of omaha serves more than 4.8 million individual product customers and 39,000 employer groupsOur legacy of stability creates an environment where every associate is encouraged to experiment, innovate and grow in their own unique career path.
From day one, you’ll have the tools to be your best self at workHere you’ll do meaningful work and your talents will have a positive impact on peoples’ lives as we help our customers protect what they care about and achieve their financial goals.
Each associate is a unique contributor to creating a diverse, dynamic, thriving and inclusive workplaceWe want you to become engaged … feel a sense of belonging … and contribute to the company’s exceptional future.
Join forces with a company that can amplify your strengths and empower your career.
For inquiries about the position or application process, contact our hr helpline at 1-800-365-1405.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disabilityTo request an accommodation, contact a human resources representative at 1-800-780-0304We are available monday through friday 7:00 am to 4:30 pm cst we will reply within 24 hours.
Mutual of omaha and its affiliates are an equal opportunity /affirmative action employerQualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
To all recruitment agencies: we do not accept unsolicited agency resumes and we are not responsible for any fees related to unsolicited resumes.
Posted 30+ days ago