Job Posting Date
Dec 3, 2018, 9 : 10 : 09 AMThe Application Security Analyst will primarily be responsible for supporting and conducting Emerson external perimeter security analysis and remediation.
Automated tools, such a BitSight and Security Scorecard, will be utilized to identify areas of Emerson external perimeter security gaps and weakness.
These gaps will be reviewed, analyzed and remediated to enhance Emerson security. The Application Security Analyst will also support existing Threat and Vulnerability Management security services which include Web and Mobile application security, Vulnerability Response and Enterprise Vulnerability scanning.
They will also help respond to various security threats to Emerson by identifying the threat, determining the scope, impact and course of action to remediate.
Coordinate and perform external perimeter security testing and remediation utilizing existing Emerson tools to maintain a high security score for Emerson Enterprise.
Establish the processes and procedures for external perimeter security testing, coordination and remediation
Provide detailed reporting, communication, guidance and remediation support for our worldwide customers
Deliver detailed presentations and reports to Emerson management teams
Coordinate with various security vendors to support Threat and Vulnerability Management services
Establish metrics and reporting capabilities for compliance to policy
Review and maintenance of service documentation
Track and manage vulnerabilities and remediation
Assist with application security standards and policy documentation
Assist in application security training and awareness
Assist in the management and execution of TVM security projects
A Bachelor’s degree in Management Information Systems (or equivalent)
2- 4 years’ experience in supporting enterprise applications and network
Working technical knowledge of network protocols, configurations and network design
Technical understanding of DNS, SPF, DKIM, SSL Certificates and Configurations
Experience interpreting security logs and related datasets
Experience with SEIM tools such as Splunk recommended
Advanced technical knowledge of Web Applications, Mobile Applications technology
General familiarity with enterprise vulnerability scanners (e.g., Qualys, Tenable)
General knowledge of software vulnerabilities (e.g., SQL Injection, XSS, buffer overflows)
Ability to rapidly grasp and apply new concepts and technologies
Strong self-tasking skills
Excellent organizational, analytical, verbal and written communication skills are essential
Strong customer service skills required
Ability to execute a variety of projects simultaneously and to learn about new tools and application security testing methodologies in a team-oriented environment
Security+ or SANS GIAC, preferred
Network+ or CCNA, preferred
Other Certifications such as CISSP, CISM, CASP, SSCP
Fluent in English