Senior Information Security Analyst
4 weeks ago
JOIN OUR WINNING TEAM AS A SENIOR INFORMATION SECURITY ANALYST
AT CARFAX WE ARE CONSTANTLY EXPANDING OUR PRODUCT AND TECHNOLOGY OFFERINGS This means we are continually bringing new, innovative products to market through exciting technology initiatives to help our customers. Come join the success in Biz Tech. As a Senior Information Security Analyst, you will be responsible for guiding technical teams in building secure products in a DevOps model. The position is targeted to enable better security as part of the software development lifecycle through simple and automated tools that are easily integrated into a developer's workflow. See if you have what it takes to join Team CARFAX
THE TECH CULTURE AT CARFAX CULTURE Having a creative and innovative environment where our developers can collaborate, learn and grow is something CARFAX is passionate about. We have an entire floor dedicated to our techies, designed specifically to enable teams to dream big and produce the best. Along with creating and maintaining awesome software you’ll also be able to participate in our quarterly Hack-a-thon’s or take a break by kicking back and playing the latest game on x-box when you need to re-boot the mind. Oh, and do you happen to have a dog? CARFAX is dog-friendly and no day goes by where you don’t have the chance to visit with one of the visiting pups. We even provide the dog beds, bowls and of course, toys
AS A SENIOR INFORMATION SECURITY ANALYST, YOU WILL:
- Technical point of contact for product teams as it relates to automation, CI/CD, and DevSecOps
- Build tools and automation scripts that enable CARFAX developers to easily consume security services
- Improve the accessibility of security through automation, continuous integration pipelines, and other means
- Evaluate and recommend products and services across the corporate security technology stack
- Research and advises on secure Cloud architecture designs to best practice
- Work with teams to identify threats and vulnerabilities by performing threat assessments
- Develop technical assessments for new technologies, 3rd party integration initiatives and provide technical support to facilitate compliance with security policies
- Develop hardened operating baselines utilizing industry standards and best practice
- Develop secure coding guidelines for personnel and provide security awareness and technical training as required
- Perform and/or analyze vulnerability scans and penetration tests to direct other parties in properly mitigating vulnerabilities
- Security incident response technical lead, performs forensic investigations to determine root causes and determine appropriate security response actions
QUALIFICATIONS:
- Bachelor's degree in computer science/related technical field or equivalent experience
- 6+ years of experience developing secure software products using TDD/Agile/XP/Lean methods
- Background in developing and release of software products in cloud, ecommerce and mobile environments
- Experience in various development tools, such as Jenkins, GitHub
- Comfortable with scripting languages, such as Python, Perl, PowerShell or others
- Familiar with common APPLICATION STACK technologies (e.g., HTTP, HTML5, AJAX, REST, JSON, etc.) and PLATFORMS (e.g., AWS, ReactJS, AngularJS, JAVA, Spring Boot, MySQL, MongoDB, Hadoop, iOS, Android, etc.)
- Familiar with containers and container management platforms including Kubernetes
- Working knowledge of core CRYPTOGRAPHY concepts (Encryption, Key Storage, Hashing, Crypto Libraries, etc.) and how they are applied and attacked in applications
- Hands-on experience with port and network scanners (Nessus, Nexpose, Nmap)
- Experience with web application scanners (Netsparker) and SAST/DAST testing platforms including Veracode
- Experience working with leading firewall, network scanning and intrusion detection products and authentication technologies (Cisco ASA Firepower, F5 ASM, Sourcefire, Okta, etc.)
- Experience working with logging, alerting and file integrity monitoring tools
- Deep knowledge of common application vulnerabilities, current threat vectors and mitigations.
- Knowledge of IP protocols, networks, security architectures and security threats in an IP network
- Familiarity with IT security standards, compliance regulations and best practice frameworks (ISO 27001, ISO 27002, NIST, OWASP, SANS, SOX, ITIL, PCI DSS)
- Any of these preferred security certifications (CISSP, CSSLP, CEH, GSSP, GWEB)
ABOUT CARFAX
CARFAX, a unit of IHS Markit (Nasdaq: INFO), helps millions of people every day confidently shop, buy, own and sell used cars with innovative solutions powered by Carfax vehicle history information. The expert in vehicle history since 1984, Carfax provides exclusive services like Carfax Used Car Listings, MyCARFAX, Carfax History-Based Value and the flagship Carfax® Vehicle History Report™ to consumers and the automotive industry. Carfax owns the world's largest vehicle history database and is a nationally recognized top workplace by The Washington Post and Glassdoor.com. Shop, Buy, Own, Sell – Show me the Carfax™. Based inLondon, IHS Markit is a world leader in critical information, analytics and solutions.
-
Senior Information Security Analyst
3 weeks ago
Columbia, Missouri, United States AutomotoSocial Full timeJOIN OUR WINNING TEAM AS A SENIOR INFORMATION SECURITY ANALYSTAT CARFAX WE ARE CONSTANTLY EXPANDING OUR PRODUCT AND TECHNOLOGY OFFERINGS This means we are continually bringing new, innovative products to market through exciting technology initiatives to help our customers. Come join the success in Biz Tech. As a Senior Information Security Analyst, you...
-
Senior Cyber Security Analyst with Clearance
6 days ago
Columbia, Maryland, United States Tailored Access, LLC Full timeJob Title: Senior Cyber Security Analyst with ClearanceJob Summary: We are seeking an experienced Senior Cyber Security Analyst to join our team. As a Senior Cyber Security Analyst, you will be responsible for analyzing and mitigating vulnerabilities in complex systems.Responsibilities: As a member of our team, you will be responsible for:Analyzing system...
-
Information Security Strategist
4 days ago
Columbia, Missouri, United States AutomotoSocial Full timeWelcome to AutomotoSocial, where we empower our developers to build secure products that make a difference in the automotive industry. As a Senior Information Security Analyst, you will play a crucial role in guiding technical teams to create innovative solutions that meet the highest security standards.The success of our team relies on collaboration,...
-
National Security Analyst
5 days ago
Columbia, Maryland, United States iNovex Information Systems Full timeWe're seeking a talented National Security Analyst to support our mission-critical contract providing Cybersecurity Expertise and Risk Management. As a member of our team, you will maintain customer computers and networks, ensuring front-end systems continue to collect, process, and transmit information vital to national decision makers.The successful...
-
Information Assurance Analyst
4 days ago
Columbia, Maryland, United States iNovex Information Systems Full timeInformation Assurance AnalystWe are seeking an experienced Information Assurance Analyst to perform access discovery and enablement using various computer science methods, including automation and scripting using Python in Jupyter Notebooks.The successful candidate will possess the following qualifications:Master's degree with 3 years of relevant experience...
-
Information Security Governance Analyst
4 weeks ago
Columbia, United States Teradata Full timeOur Company At Teradata, we believe that people thrive when empowered with better information. That’s why we built the most complete cloud analytics and data platform for AI. By delivering harmonized data, trusted AI, and faster innovation, we uplift and empower our customers and our customers’ customers to make better, more confident decisions. The...
-
Information Security Analyst
2 weeks ago
Columbia, Maryland, United States SIXGEN Full timeWe are seeking an experienced Information Security Analyst, with experience planning, implementing, upgrading, or monitoring security measures for the protection of computer networks and information. This role resides in our Delivery department and reports to our Program Manager. This position is located onsite in Columbia, Maryland with a 10% travel...
-
Senior Information Security Specialist
5 days ago
Columbia, Maryland, United States iNovex Information Systems Full timeUncompromising Security for a Safer TomorrowiNovex Information Systems has been a trusted partner for government and commercial clients seeking expert cybersecurity services. Our innovative approach empowers organizations to protect their critical assets and achieve mission success.About the PositionWe seek an experienced Information System Security Engineer...
-
Information Security Analyst
2 weeks ago
Columbia, Maryland, United States TekSynap Full timeResponsibilities & QualificationsRESPONSIBILITIESPlan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.Ensures the rigorous...
-
Information Security and Fraud Analyst
2 days ago
Columbia, Tennessee, United States First Farmers & Merchants Bank Full timeDate: July 8, 2024 • Job Location: First Farmers and Merchants Bank, 816 South Garden Street, Columbia, TN 38401 Education Level: (1) A two-year college degree, or (2) completion of a specialized certification or licensing, or (3) completion of specialized training courses conducted by vendors, or (4) job-specific skills acquired through an apprenticeship...
-
Columbia, Maryland, United States TekSynap Full timeResponsibilities & Qualifications RESPONSIBILITIES Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses. Ensures the...
-
Information Systems Security Officer
2 days ago
Columbia, Maryland, United States SCD Information Technology Full timeSCD Information Technology is currently seeking an Information Systems Security Officer (ISSO) to join our team in Columbia, MD. SCD Information Technology is a cutting-edge technology company specializing in providing innovative solutions to clients in various sectors, including government agencies and defense organizations. SCDIT prides itself on...
-
Senior Network Security Analyst
6 days ago
Columbia, Maryland, United States Tailored Access LLC Full timeTailored Access LLC seeks a highly skilled Senior Network Security Analyst to join our team. As a key member of our organization, you will be responsible for analyzing and troubleshooting complex network traffic, identifying security threats, and implementing solutions to protect our systems.Job RequirementsTo be successful in this role, you must have a...
-
2487 Information Security Analyst Journeyman
2 weeks ago
Columbia, Maryland, United States Top Secret Clearance Jobs Full timeAbout the job 2487 Information Security Analyst Journeyman Top Secret Clearance Jobs is dedicated to helping those with the most exclusive security clearance find their next career opportunity and get interviews within 48 hours. Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure...
-
Security Analyst
2 weeks ago
Columbia, South Carolina, United States TALENT Software Services Full timeAre you an experienced Security Analyst with a desire to excel? If so, then Talent Software Services may have the job for you Seeking an experienced Security Analyst to work in San Columbia, SC. Position Summary: The Office of Cybersecurity is responsible for the Security and Compliance of Information Systems and Data. The team seeks an expert Senior ISSO...
-
Information System Security Specialist
3 days ago
Columbia, Maryland, United States iNovex Information Systems Full time**Job Description**iNovex Information Systems is a mid-sized science and technology company dedicated to solving our customers' toughest mission challenges.We are seeking an experienced Information System Security Specialist to join our team. As a key member of our cybersecurity team, you will be responsible for performing technical security assessments of...
-
Information System Security Manager 2
3 weeks ago
Columbia, Maryland, United States iNovex Information Systems Full timeJob Brief ORANGE you glad that you chose RealmOne. Information System Security Manager (Level 2) Job Description ORANGE you glad that you chose RealmOne? RealmOne was built on the principle that people matter first and foremost. We believe in providing a strong work/life balance by investing in our employees and encouraging professional and personal growth....
-
Information System Security Manager 3
4 weeks ago
Columbia, Maryland, United States iNovex Information Systems Full timeJob Brief ORANGE you glad that you chose RealmOne. Information System Security Manager (Level 3) Job Description ORANGE you glad that you chose RealmOne? RealmOne was built on the principle that people matter first and foremost. We believe in providing a strong work/life balance by investing in our employees and encouraging professional and personal growth....
-
Information Systems Security Engineer 3
3 weeks ago
Columbia, Maryland, United States iNovex Information Systems Full timeJob Brief Maintain flexible and non-traditional Risk Management Framework (RMF) Job Description We're searching for talented individuals who provide intelligence, engineering, and mission management expertise for the Government. This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If...
-
Information Systems Security Engineer 3
3 weeks ago
Columbia, Maryland, United States iNovex Information Systems Full timeJob BriefMaintain flexible and non-traditional Risk Management Framework (RMF)Job DescriptionWe're searching for talented individuals who provide intelligence, engineering, and mission management expertise for the Government. This program will maximize the effectiveness and efficiency of our country's most important missions both at home and abroad. If you...
