Information Security Analyst
Vanguard Business Services Limited
- Company Industries:General Business Services
Job Information
- Post Date:2016-11-03
- Career Level:Middle
- Location:Not Specified
- Salary:Salary provided
- Employment Type:Contract, Full Time
- Job Function:Security
- Benefits:Dental insurance Five-day work week Medical insurance Performance bonus
Job Description
Our client who is a leading provider of information technology, consulting, and business process services is seeking an Information Security Analyst.
EDUCATION and/or EXPERIENCE
- Possession of Bachelor’s Degree in an IT related discipline is required.
- At least 5+ years of Application Security experience.
- Application development experience in platforms such as .NET, ASP, Java, PHP, SQL, MySQL is a plus
- Understanding of common web vulnerabilities, including OWASP Top 10, Application Security Verification Standard (ASVS) is required
- Familiarity with common security tools, including vulnerability scanners, Security Incident and Event Management, Intrusion Detection/Prevention Systems, Web Application Firewall, and web application assessment enabling tools.
- Certifications such as CISSP, SANS is an added advantage
- Strong communication and presentation skills in both English and local Chinese language
DUTIES:
- Responsible for all Information Security activities within an assigned project or market
- Drive all Security Risk Assessment remediation work related to Infrastructure, Applications and Business Processes
- Review infrastructure & application security results from various static and dynamic security testing tools
- Provide recommendations to development teams in resolving application security issues
- Manage and coordinate all application security remediation work
- Provide security training and awareness sessions to developers, system administrators, and Business focused personnel
- Work with cross functional teams to drive the closure of identified vulnerabilities and security risks
- Recommend and implement Database Security measures such as DB encryption using native or commercial products
- Work with application development teams to ensure OWASP ASVS (Application Security Verification Standard) requirements are implemented
- Ability to create reports and perform risk assessments using industry standard control frameworks such as ISO 27001
Company Info
Vanguard Business Services is a professional employer organization providing human
resource services, co-employment service and payroll processing services.
Vanguard's unique services and solutions relief our customers from burden of employment administration and improve employment practices, compliance and risk management to reduce employer-related liability.
Position | Company | Location | Update |
---|