Re Focus LLC
Note this is a hybrid position meaning a combination of remote and on-site work in Dearborn MI. FordDirects current hybrid policy is 3 days in the office Tue-Thur with remote days on Monday and Friday. Events issues or exceptions might increase or reduce these requirements for a given week.
Job Summary :
Application Security Operations Oversee the operational use and effectiveness of application security tools Dynamic Application Security Testing (DAST) Static Application Security Testing (SAST) and Software Composition Analysis (SCA).
Collaborate with development and DevOps teams to integrate security testing into the CI / CD pipeline and ensure vulnerabilities identified by these tools are triaged and remediated effectively.
Provide guidance on interpreting scan results and prioritizing remediation efforts for application-level vulnerabilities.
Cloud Security In-depth knowledge and hands-on experience with Microsoft Azure security services specifically Microsoft Defender for Cloud Entra ID and Azure Sentinel (SIEM / SOAR)
Proficiency in assessing and hardening Azure environments including IaaS PaaS and network security configurations.
Infrastructure Vulnerability Management Proactively manage and conduct regular vulnerability assessments and remediation efforts for our infrastructure using Microsoft Defender for Cloud
Ensure continuous security posture management for cloud and hybrid environments identifying misconfigurations and security weaknesses.
Work with relevant teams to prioritize and implement recommended security controls and patches identified through Defender for Cloud.
Essential Job Functions
Support
Vulnerability Assessment
Threat Intelligence
Application Security
Secure Cloud Configuration
Identity and Access Management
Other Responsibilities Other security related duties as assigned.
Minimum Qualifications and Job Requirements 3 - 5 years security experience ISO experience or certification
Certifications (one or more highly preferred)
CISSP (Certified Information Systems Security Professional)
CISM (Certified Information Security Manager)
AZ-500 (Microsoft Certified : Azure Security Engineer Associate)
CySA (CompTIA Cybersecurity Analyst)
CEH (Certified Ethical Hacker)
Key Skills Splunk, IDS, Network security, Computer Networking, Identity & Access Management, PKI, PCI, NIST Standards, Security System Experience, Information Security, Encryption, Siem
Employment Type : Full Time
Experience : years
Vacancy : 1
#J-18808-Ljbffr
Job Summary :
Application Security Operations Oversee the operational use and effectiveness of application security tools Dynamic Application Security Testing (DAST) Static Application Security Testing (SAST) and Software Composition Analysis (SCA).
Collaborate with development and DevOps teams to integrate security testing into the CI / CD pipeline and ensure vulnerabilities identified by these tools are triaged and remediated effectively.
Provide guidance on interpreting scan results and prioritizing remediation efforts for application-level vulnerabilities.
Cloud Security In-depth knowledge and hands-on experience with Microsoft Azure security services specifically Microsoft Defender for Cloud Entra ID and Azure Sentinel (SIEM / SOAR)
Proficiency in assessing and hardening Azure environments including IaaS PaaS and network security configurations.
Infrastructure Vulnerability Management Proactively manage and conduct regular vulnerability assessments and remediation efforts for our infrastructure using Microsoft Defender for Cloud
Ensure continuous security posture management for cloud and hybrid environments identifying misconfigurations and security weaknesses.
Work with relevant teams to prioritize and implement recommended security controls and patches identified through Defender for Cloud.
Essential Job Functions
Support
Vulnerability Assessment
Threat Intelligence
Application Security
Secure Cloud Configuration
Identity and Access Management
Other Responsibilities Other security related duties as assigned.
Minimum Qualifications and Job Requirements 3 - 5 years security experience ISO experience or certification
Certifications (one or more highly preferred)
CISSP (Certified Information Systems Security Professional)
CISM (Certified Information Security Manager)
AZ-500 (Microsoft Certified : Azure Security Engineer Associate)
CySA (CompTIA Cybersecurity Analyst)
CEH (Certified Ethical Hacker)
Key Skills Splunk, IDS, Network security, Computer Networking, Identity & Access Management, PKI, PCI, NIST Standards, Security System Experience, Information Security, Encryption, Siem
Employment Type : Full Time
Experience : years
Vacancy : 1
#J-18808-Ljbffr