Business Analyst with Application Security Specialist
King Of Prussia PA
6 Months
8 – 10 Years
Key responsibilities:
- As a key member of the "Application Security InfoProtect Workstream," develop thorough understanding of application risk in the regulated Pharmaceutical industry
- Evaluate best "Secure Development Practices" proposals to serve as basis for implementing improvements
- Research and recommend potential products, procedures and possibly vendor partners to meet agreed policies and procedures to protect GSK assets
- Work with extended InfoProtect Programme to evaluate specific tools (e.g., source code analysis, vulnerability scanners, testing techniques, etc.) to ensure compliance of computer systems
- Plan testing, implementation and monitoring processes/tools for selected technologies to be embedded in the GSK environment.
- Incumbent will assume additional responsibilities as assigned.
- Basic Requirements
- Education to Bachelor's degree, preferably in Information Security, Computer Science or related technology (or equivalent work experience)
- 5+ years of experience in Application Security and/or related technical field –understanding of security and risk in terms of software and applications
- Broad work experience spanning multiple information security functions, particularly as related to application vulnerability assessments, penetration, compliance testing, tool selection and implementation, etc.
- Understanding of regulatory and business drivers that impact security policies and practices
- Excellent English oral, written, verbal and presentation skills for a wide variety of audiences, including senior management
- Effective interpersonal skills
- Very strong matrix management skills – ability to manage by influence rather than direct line control, with clear ability to work effectively in a cross-functional team environment (potentially including vendor and offshore teams)
- Excellent skills using the Microsoft Office Suite (especially Excel for data analysis)
- Ability to work in a multinational environment across multiple business areas within GSK
- Ability to utilize experience, influencing and negotiating skills to facilitate successful design and implementation, stakeholder management and effective issue resolution
- Preferred Requirements
- Experience and current expert knowledge of Identity and Access Management (IAM) and Governance and Regulatory Control (GRC) tools to understand, evaluate and quantify risk
- Two+ years of experience evaluating the security of applications using both manual and automated techniques.
- Related experience in a regulated pharmaceutical environment – related GSK experience preferred
- Data analysis experience using database queries, reporting tools, etc.
- Preferred certifications: CISSP and/or CRISC
Mandatory Skills: Business Analyst, Application Security, Security Business Analysis,
Teja Venkatesh
Technical Recruiter
+1-703-957-5651 | teja@javaji.com
Javaji System Solutions Inc. | 1039 Sterling Rd, Ste 103, Herndon, Virginia, USA | www.javaji.com
You received this message because you are subscribed to the Google Groups "US Jobs: Requirements, Clients and Consultants" group.
To unsubscribe from this group and stop receiving emails from it, send an email to recruiters-r-us+unsubscribe@googlegroups.com.
To post to this group, send email to recruiters-r-us@googlegroups.com.
Visit this group at http://groups.google.com/group/recruiters-r-us.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment