V2Soft (www.v2soft.com) is a global company, headquartered out of Bloomfield Hills, Michigan, with locations in Mexico, Italy, India, China and Germany. At V2Soft, our mission is to provide high performance technology solutions to solve real business problems. We become our customer's true partner, enabling both parties to enjoy success. We are committed to promoting diversity in the workplace, and believe it has a positive effect on our company and the customers we serve.Role Summary:
This position will be part of our Cybersecurity department, which is responsible for assuring that security principles and company security policies are adhered to in the design and delivery of systems and software. The Cybersecurity Analyst is responsible for leading a coordinated effort to assess and audit client applications, internally and externally. This role will also coordinate penetration tests and third party cybersecurity assessments. Assessing applications with the designated IT and Business owners to meet client security requirements, internally and externally, following the documented Application Security Assessment (ASA) process
Managing and organizing the documentation for ASAs
Setting up and leading meetings between the Business and IT owners to conduct interviews for ASAs
Gathering evidence for applications based on ASA control measures, third party assessments and penetration tests
Coordinating penetration tests for applications and ensuring that identified findings are remediated prior to approval/launch
Ensuring known vulnerabilities are identified and documented for applications
Performing and/or supporting cybersecurity assessments of third parties that are a part of applications through the review of third party cybersecurity questions, participation in third party interviews, and review of third party documentation
Managing assessment activities and associated timelines persuade to both business and IT need in an urgent but business-like mannerTechnical Experience:
5+ years of professional experience in information technology, with at least 2 years of experience directly in an Cybersecurity role.Education:
Required: Bachelor's Degree or a combination of formal education and work experience equaling a Bachelor's Degree
Desired: Bachelor's Degree in Information Security, Technology or Computer ScienceUnique Skills:
Cybersecurity Certification (Certified Information Security System Professional (CISSP) certification or equivalent)
Broad understanding of computer networking, technology, and customer service with a security focus
Understanding of common web application security concepts, such as the OWASP Top 10, and their practical implementation
Experience with industry cybersecurity frameworks (eg. NIST 800-53 or equivalent)
Operational knowledge and skills related to conducting industry standard application security assessments
Experience gathering evidence to verify cybersecurity control implementation
Strong verbal and written communications skills, with an ability to express complex technical concepts in business terms to multiple different audiences
Ability to inform, educate and influence business and IT employees to support goals and initiatives of the Cybersecurity department
Analytical and conceptual thinking using logic and reason, creative and strategic
Integration joining people, processes or system
Excellent planning, organization, and time management skill
Ability to work independently with minimal supervisionV2Soft is an Equal Opportunity Employer ( EOE).
