Senior Information Security Engineer at Wiley
Applications are invited for all candidates to fill the Senior Information Security Engineer Job Opening at Wiley
Closing Date : 24/02/2022
About the Role:
This Senior Security Engineer position will report to the Security Engineering Manager and will manage continuous vulnerability lifecycle management within the Wiley environment including monitoring, collection, reporting, and assessment of impact for identified vulnerabilities. This will require creating partnerships with various technical teams and helping guide them in mitigation steps for vulnerabilities throughout their ecosystem to ensure they meet Wiley’s defined Vulnerability Management SLAs.
This position will also install, maintain, and recommend Cyber Security solutions/tools to ensure Wiley assets are secured.
How you will make an impact:
- Serve as the subject matter expert related to Vulnerability Management and secure configurations
- Hands-on experience with Vulnerability Management tools
- Perform research and analysis of scheduled and on-demand vulnerability assessments and post results
- Research exploit techniques and mitigation strategies
- Development of vulnerability management actionable metrics and reporting for operations and leadership transparency
- Member of Wiley’s internal Bug Bounty team
- Coordination with various business and technical teams to provide guidance on how to mitigate identified and potential vulnerabilities
- Work with the SRE teams to ensure Vulnerability Management is integrated into the various DevOps CI/CD pipelines
- Integration of Vulnerability Management with Wiley’s GRC program
- Engineer Security solutions that contribute to the enhancement of Wiley’s Cyber Security program
- Conduct incident prevention, detection, containment, eradication, and recovery across IT systems
- Research, recommend, and implement additional technologies to improve overall security posture
- Hands-on experience with Content Delivery Networks
-
Incident Response remediation experience
What we look for:
- Bachelor’s Degree or equivalent
- 5+ Years IT Industry experience
- 3-5 Years hands-on technical/implementation and support experience
- Experience using vulnerability management tools to include infrastructure scanners (Rapid7, Qualys, etc,)
- Knowledge of Application Security Vulnerabilities
- Must have knowledge of AWS
- Knowledge and experience installing and maintaining a Cyber Security toolset
- Knowledge about Application Security toolsets (SAST, IAST, DAST, RASP)
- Familiarity with GRC practices and tools
- Familiarity with Agile methodologies
- Self-motivated and Independent
- SANS GSEC or CISSP Certification a plus
Apply now : https://bit.ly/3AsKdk2