-
Security Analyst
5 days ago
Cleveland-Cliffs Inc Cleveland, United StatesCleveland-Cliffs Steel has an immediate opening for a dedicated and detail-oriented Program Analyst in our Security Department in Cleveland-Cliffs HQ, based in Cleveland, Ohio. The ideal candidate will have a passion for leveraging data analytics to improve security protocols, id ...
-
Security Analyst
2 weeks ago
Cleveland-Cliffs Inc Cleveland, United StatesCleveland-Cliffs Steel has an immediate opening for a dedicated and detail-oriented Program Analyst in our Security Department in Cleveland-Cliffs HQ, based in Cleveland, Ohio. The ideal candidate will have a passion for leveraging data analytics to improve security protocols, id ...
-
Senior Security Analyst
1 week ago
ReliabilityFirst Corporation Cleveland, United StatesAbout RF: · ReliabilityFirst Corporation is a regulator focused on the reliability and security of the electric grid. ReliabilityFirst's mission is to preserve and enhance the reliability, security, and resilience of the Bulk Power System across 13 states and the District of Colu ...
-
Senior Security Analyst
1 week ago
ReliabilityFirst Cleveland, United StatesAbout RF: · ReliabilityFirst Corporation is a regulator focused on the reliability and security of the electric grid. ReliabilityFirst's mission is to preserve and enhance the reliability, security, and resilience of the Bulk Power System across 13 states and the District of Colu ...
-
Network Security Analyst
1 week ago
The Sherwin-Williams Company Cleveland, United StatesStrategy & Planning Participate in the planning and designing of enterprise security architecture, under the direction of the IT Lead Security Analyst, where appropriate. · Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, ...
-
Application Security Analyst
4 days ago
CGI Technologies and Solutions, Inc. Cleveland, United StatesApplication Security Analyst - Hybrid · Category: Cyber Security · Main location:, Various · Alternate Location(s): United States, North Carolina, Raleigh · United States, Ohio, Cleveland · Position ID: J · Employment Type: Full Time · Position Description: · CGI has an immediat ...
-
Cyber Security Analyst
2 weeks ago
MCPc Holdings, Inc. Cleveland, United StatesFortress Security Risk Management is a nationally recognized full-spectrum cybersecurity firm dedicated to protecting its clients from the financial, operational, and emotional ravages of cybercrime. Headquartered in Cleveland, OH, Fortress primarily has a regional footprint but ...
-
Cyber Security Analyst
1 week ago
MCPc Cleveland, United StatesCompany Description · Fortress Security Risk Management is a nationally recognized full-spectrum cybersecurity firm dedicated to protecting its clients from the financial, operational, and emotional ravages of cybercrime. Headquartered in Cleveland, OH, Fortress primarily has a ...
-
Senior Security Analyst
2 weeks ago
ReliabilityFirst Cleveland, United StatesAbout RF: · Do not wait to apply after reading this description a high application volume is expected for this opportunity. · ReliabilityFirst Corporation is a regulator focused on the reliability and security of the electric grid. ReliabilityFirst's mission is to preserve and ...
-
Application Security Analyst
9 hours ago
CGI Technologies and Solutions, Inc. Cleveland, United StatesApplication Security Analyst - Hybrid · Category: Cyber Security · Main location: United States, Various · Alternate Location(s): United States, North Carolina, Raleigh · United States, Ohio, Cleveland · Position ID: J · Employment Type: Full Time · Position Description: · CGI h ...
-
Info Security Analyst
2 weeks ago
TalentBurst Cleveland, United StatesJob Title: Info Security Analyst · Position is 100% Remote · Duration of assignment until for now. · Start date is · Job Description: · The ideal candidate for this position has an in-depth knowledge of security and technology, with strong understanding of risk management. The ...
-
Senior Security Analyst
2 weeks ago
ReliabilityFirst Cleveland, United StatesAbout RF: · ReliabilityFirst Corporation is a regulator focused on the reliability and security of the electric grid. ReliabilityFirsts mission is to preserve and enhance the reliability, security, and resilience of the Bulk Power System across 13 states and the District of Colu ...
-
Network Security Analyst
2 weeks ago
The Sherwin-Williams Company Cleveland, United StatesStrategy & Planning · Participate in the planning and designing of enterprise security architecture, under the direction of the IT Lead Security Analyst, where appropriate. · Participate in the creation of enterprise security documents (policies, standards, baselines, guideline ...
-
IT Information Security Analyst
1 week ago
Exodus Integrity Services Cleveland, United StatesExodus Integrity Services, Inc is a rapidly expanding technology company headquartered in Northeast Ohio. EIS provides quality services to our clients by instilling honesty, commitment, and hard work to find the most qualified candidates to fill each opportunity.Currently, we are ...
-
IT Security Analyst II
1 week ago
Medical Mutual Cleveland, United States Full timeJob Description - IT Security Analyst II - IV Job Description IT Security Analyst II - IV Description Founded in 1934, Medical Mutual is the oldest and one of the largest health insurance companies based in Ohio. We provide peace of mind to more than 1.6 million Ohioans through ...
-
IT Information Security Analyst
5 days ago
Exodus Integrity Services Cleveland, United StatesExodus Integrity Services, Inc is a rapidly expanding technology company headquartered in Northeast Ohio. EIS provides quality services to our clients by instilling honesty, commitment, and hard work to find the most qualified candidates to fill each opportunity.Currently, we are ...
-
Network Security Analyst
2 weeks ago
Sherwin-Williams Cleveland, United StatesJob Description · Strategy & PlanningParticipate in the planning and designing of enterprise security architecture, under the direction of the IT Lead Security Analyst, where appropriate. · Participate in the creation of enterprise security documents (policies, standards, baseli ...
-
Information Security Analyst
1 week ago
RightTalents LLC Cleveland, United StatesJob Description: · The ideal candidate for this position has an in-depth knowledge of security and technology, with strong understanding of risk management. The candidate must be able to make decisions based on prior experience in a large enterprise environment and their solid u ...
-
Information Security Analyst
1 week ago
RightTalents LLC Cleveland, United StatesJob Description: · The ideal candidate for this position has an in-depth knowledge of security and technology, with strong understanding of risk management. The candidate must be able to make decisions based on prior experience in a large enterprise environment and their solid un ...
-
Information Security Analyst
1 week ago
RightTalents LLC Cleveland, United StatesJob Description: · The ideal candidate for this position has an in-depth knowledge of security and technology, with strong understanding of risk management. The candidate must be able to make decisions based on prior experience in a large enterprise environment and their solid ...
Lead Application Security Analyst - Cleveland, United States - The Sherwin-Williams Company
Description
Strategy & PlanningAcquire and interpret business requirements and functional specifications to create security non-functional requirements.
Work with the security architects to validate potential architectures through techniques like threat modeling.
Maintain knowledge of best security practices through training, research, involvement with local IT security groups, and collaboration with internal cybersecurity teams.
Assist development teams in updating the CMDB records to reflect current state.
Validate that OS, middleware, and images are being scanned for vulnerabilities at regular intervals and any reported vulnerabilities are tied back to the appropriate application(s).
Work with dev-ops teams and engineers to integrate security solutions into continuous delivery frameworks.
Mitigate security risks associated with projects, which have a high technical complexity and/or involve significant challenges to the business.
Work with delivery teams and product owners to reduce application security risks by assisting with code remediation before production delivery.
Work with architects and developers to design optimal security practices when developing new application functionality.
Operational Management
Support and maintain automated application security testing within the devops pipelines.
Provide input in updating security standards on an annual basis.
Ensure that all applications are using effective security monitoring, and work with the endpoint security team to test configurations.
Incidental Functions
Deciding new technologies including tools, components, and frameworks.
Project and task management and reporting as necessary.
Make presentations to management, clients, and peer groups as requested.
Participate in hiring activities and fulfilling affirmative action obligations and ensuring compliance with the equal employment opportunity policy.
This position is not eligible for sponsorship for work authorization now or in the future, including conversion to H1-B visa.
This position has a hybrid work schedule with three days in the office and the option for working remotely two days.
Bachelor's degree (or foreign equivalent) in a Computer Science, Computer Engineering, or Information Technology field of study (e.g., Information Technology, Electronics and Instrumentation Engineering, Computer Systems Management, Mathematics) or equivalent experience.
Knowledge & Experience
8+ years of total IT and/or cybersecurity experience
Experience working on all phases of the Software Development Lifecycle.
Preferred Experience
3+ year(s) of experience in securing web services
3+ years of coding experience, preferably Java
Detailed understanding of authentication/authorization best practices
Working knowledge of oAuth 2.0 flows
Understanding of integrating security practices with container-based deployments
Understanding of web application firewall technology
Mentoring software engineers in writing secure code.
Personal Attributes
Strong analytical, conceptual, and problem-solving abilities.
Good written and oral communication skills.
Good presentation and interpersonal skills.
Ability to present ideas in user-friendly language.
Able to prioritize and execute tasks in a high-pressure environment.
Ability to work in a team-oriented, collaborative environment.
Strong commitment to inclusion and diversity
Minimal travel is required.
Work outside the standard office 7.5-hour workday may be required.
#J-18808-Ljbffr