Logo of Huzzle

Mid-Level IT Security Specialist

  • Job
    Full-time
    Junior & Mid Level
  • Software Engineering
    IT & Cybersecurity
  • Jacksonville
    Remote

AI generated summary

  • You need a Bachelor’s/Master’s in Computer Science, 10+ years in security, knowledge of NIST, ISO, and modern tools, cryptography skills, strong problem-solving, and teamwork abilities.
  • You will design and implement security solutions, conduct risk assessments, integrate security into development, maintain policies, and guide teams on best practices while staying current with threats.

Requirements

  • Bachelor's or Master’s degree in Computer Science or a related field.
  • 10+ years of experience in software architecture and security, with expertise in modern security technologies and approaches.
  • Strong knowledge of security frameworks, standards, and best practices such as NIST, ISO, CIS, OAuth, SAML, Okta, Zero Trust, DevSecOps, Cloud Security, and OWASP.
  • Experience with modern security tools and technologies such as SIEM, SOAR, SAST, DAST, SCA, and Endpoint Detection and Response (EDR) solutions.
  • Experience with modern cryptographic algorithms and standards such as AES, RSA, and SHA.
  • Strong analytical and problem-solving skills.
  • Excellent communication and interpersonal skills, as well as experience working in cross-functional teams.
  • Ability to work effectively in a fast-paced, agile development environment.

Responsibilities

  • Design and implement Single Sign On Authentication using SAML, OKTA, OIDC
  • Design and implement Multi-Factor authentication on cloud or premises platforms.
  • Design and implement authorization and entitlements based on federated identity authentication.
  • Design and implement data-at-rest encryption of data stores and file systems.
  • Design and implement security on the cloud using AWS IAM, AWS KMS, AWS Secrets Manager, or an equivalent in AWS
  • Design and implement secure software architectures for our organization, ensuring that our systems, applications, and data are protected against current and emerging security threats.
  • Work with development teams to ensure that security is integrated into the software development lifecycle, including conducting security reviews, and recommending security tools and technologies such as OAuth, SAML, Key SaaS, Okta, and others.
  • Develop and maintain security policies, procedures, and standards based on modern frameworks such as NIST, ISO, and CIS, and ensure that they are up to date with current security best practices.
  • Design authorization architecture based on RBAC with technologies like Spring Boot etc.
  • Conduct security risk assessments and vulnerability scans and develop and implement plans to remediate identified vulnerabilities and threats using modern techniques such as threat modeling, red teaming, and purple teaming.
  • Design and implement security controls to protect our systems, applications, and data, including firewalls, intrusion detection and prevention systems, anti-virus software, endpoint security solutions, and encryption solutions based on modern cryptographic algorithms and standards such as AES, RSA, and SHA.
  • Stay current with emerging security threats and technologies and make recommendations for enhancing our security posture based on modern approaches such as Zero Trust, DevSecOps, and Cloud Security.
  • Lead security audits and assessments and develop and implement plans to remediate identified security gaps and compliance issues based on modern compliance frameworks such as PCI-DSS, HIPAA, and GDPR.
  • Provide security guidance and training to other teams and stakeholders, including training on security awareness and best practices based on modern training approaches such as gamification, simulation, and microlearning.
  • Develop and maintain relationships with external security vendors and partners and leverage modern approaches such as Threat Intelligence and Security Operations Centers (SOC) to enhance our security posture.

FAQs

Is this position remote?

Yes, this position is fully remote.

What is the salary range for this role?

The annual income for this role is between $90K and $100K.

How many years of experience are required for this position?

A minimum of 2-3 years of relevant experience is required for this position.

Is a valid work permit required to apply?

Yes, a valid work permit is necessary to work in the US or Canada.

What educational background is preferred for candidates?

A Bachelor's or Master’s degree in Computer Science or a related field is preferred.

What security frameworks should candidates be familiar with?

Candidates should have knowledge of frameworks such as NIST, ISO, CIS, and OWASP.

Are there specific technologies that candidates must have experience with?

Yes, candidates should have expertise in technologies like SAML, OKTA, OIDC, AWS IAM, and encryption solutions.

Will security training be a part of the responsibilities?

Yes, providing security guidance and training to other teams and stakeholders is part of the role.

What skills are essential for this role?

Strong analytical and problem-solving skills, excellent communication, and the ability to work in cross-functional teams are essential.

Are there specific methodologies the candidate should be familiar with?

Yes, familiarity with methodologies such as Zero Trust, DevSecOps, and Cloud Security is important.

Learn Coding & Build software collaboratively with the power of AI, on any device, without spending a second on setup!

Technology
Industry
11-50
Employees

Mission & Purpose

Skip setup, soar through code! Learn & build together, on-demand, with AI your co-pilot. Any device, endless possibilities. Careers taking flight? Visit our page! But wait, there's more! You're not alone on this coding quest. Our trusty AI companion will guide you, suggest code snippets like secret spells, and catch errors before they turn into dark side bugs. Collaborate with fellow code warriors in real-time, sharing wisdom and building epic software empires together. From simple droids to full-blown Death Stars, the possibilities are endless. Web apps, mobile games, anything your code-fueled imagination can conjure. And when your masterpiece is ready, deploy it with a single click, sharing your creation with the galaxy. Level up your skills, join a thriving community of code knights, and land your dream tech job. Our career page is like a lightsaber to your resume, cutting through obstacles and illuminating your path to coding glory. So grab your device, choose your coding destiny, and join the revolution