Application Security Technologist in Hoffman Estates, IL at Transformco

Date Posted: 11/3/2020

Job Snapshot

  • Employee Type:
  • Location:
    3333 Beverly Road
    Hoffman Estates, IL
  • Date Posted:
  • Job ID:

Job Description

Req/Job ID: 1000705BR
Employing Entity: Transform SR Holding Management LLC
Employment Category: Regular, Full-time
Job Function: Engineering/Quality
Store ID: 58491: Sears Holdings Management Corp

The Application Security Technologist shall provide technical and analytic skills to build and secure the Transformco application infrastructure. The Technologist will be responsible for working with others, specific security software solutions in place, and advising on possible new software solutions. The Technologist is expected to help assist in Cyber Security incidents, problem resolution for issues, and ensure the overall Team provides needed technical administration of its security systems by providing oversight, coaching, and technical expertise where needed. The Lead will provide information, reports, metrics, and documentation to Management on an on-going basis.

Job Requirements

Essential Functions:

  • Manage security toolset that includes application pen testing, code scanning tools, and web application firewalls.
  • Manage vulnerability scanning tools and remediation process with the development team setting the priority on resolutions.
  • Oversee and perform the function of manual website security assessments.
  • Participate in preparing the budget for security operations to ensure the delivery of high-quality security services.
  • Improve security process to reduce false-positive findings
  • Drive automation of scanning and remediation processes
  • Provide ad hoc security information and consulting to internal teams as needed.
  • Develop strategies to respond to and recover from security vulnerabilities and incidents.
  • Educating the workforce on secure application development and deployment
  • Evaluate and recommend security tools for the improvement of the department.
  • Act as a Subject Matter Expert (SME) in the following areas:
  • Application security tools
  • Secure coding practices
  • Web application firewalls

Key Qualifications:

  • Has a minimum of 3+ years of application security experience
  • Experience with WhiteHat
  • Experience with Checkmarx
  • Experience with Akamai
  • Has one or more of the following certifications:
  • CISSP (Certified Information Systems Security Professional)
  • CISA (Certified Information Systems Auditor)
  • CRISC (Certified in Risk and Information Systems Control)
  • ITIL Foundation (Information Technology Infrastructure Library)
  • CISM (Certified Information Security Manager)
  • Hands-on Experience with application penetration testing tools, secure coding tools, and web application firewalls.
  • Has demonstrated the ability to contribute to the organization, processes, and teams effectively.
  • Comfort with tools to exploit vulnerabilities.
  • Knowledge of multiple coding languages
  • Has shown adherence to organizational processes and procedures
  • Exhibits initiative and drive to complete tasks promptly
  • Displays leadership qualities, takes ownership of assigned responsibilities
  • Contributes positively to the working environment
  • Strong interpersonal skills and ability to collaborate as part of a team.
  • Strong organizational skills and attention-to-detail.
  • Experience in building and maintaining security systems
  • Familiarity with web-related technologies (Web applications, Web Services, Service-Oriented Architectures) and of network/web related protocols
  • Experience with Cloud related technologies (IaaS, PaaS, SaaS, AWS, GCP, Azure)
  • Stays abreast of industry best practices in incident response, risk management techniques, regulatory and retail industry information security requirements.

#Corporate, #Technology