Information Security Associate

Our client is looking for an outstanding Information Security Associate. This is a Full-Time opportunity with an exciting NYC based  Fin-Tech Start-Up.  The job is located in Manhattan, New York and is offering competitive pay plus awesome benefits.

Responsibilities & Qualifications Overall 3-7 years of experience in any of the following domains:

  • Application Security – Penetration Testing, Secure Code reviews, Threat modeling, Web application Firewalls
  • Security Automation Experience -  Devsecops(Infrastructure security), Security testing automation, AWS security implementation(cloudtrail, macie, guard duty etc.)
  • Development/Implementation of Security technologies like Identity and Access Management, Cryptography, Key management etc.
Hands on, individual contribution in the following areas.

  • Manage Secure SDLC processes across client's Application Development team
  • Build automation capabilities for Code reviews, Security Regression Testing, Dynamic Testing
  • Perform Threat Modeling and Code reviews
  • Infrastructure Security Automation:
    • Establish vulnerability management/patching infrastructure.
    • Monitoring/alerting infrastructure for AWS infrastructure
    • Proactive Infrastructure testing using Inspec and other tools
  • Information Security Processes – Build policies, procedures and track implementation to establish SOC2 compliance