Mentor other team members and provide expertise & collaboration Perform network and security reviews on various enterprise systems and applications and work with security and technology teams to ensure effective controls over security of data in various systems Manage and administer tooling to support the Assurance function Evaluate the security posture of systems and security processes to uncover vulnerabilities and potential exploitation vectors Participate and support sustaining vulnerability... more details
We are looking for Information Security Assurance professional to join the Crane Company Global Information Security Team in supporting our global information security program. The ideal candidate will have a solid proficiency in penetration testing methodologies and platforms, scripting and programming used for security testing, and have had broad exposure to application and systems testing and vulnerability assessments programs. Previous experience working as part of a penetration (red) team or purple team is required.
In this role, the Assurance Lead will work closely with other Global Information Security team members, both in operations and in incident response to test our defenses, assist with planning exercises, and guide the overall approach to mitigating risk and closing security gaps.
Responsibilities and Duties:
Mentor other team members and provide expertise & collaboration
Perform network and security reviews on various enterprise systems and applications and work with security and technology teams to ensure effective controls over security of data in various systems
Manage and administer tooling to support the Assurance function
Evaluate the security posture of systems and security processes to uncover vulnerabilities and potential exploitation vectors
Participate and support sustaining vulnerability assessment processes
Manage projects and hold teams and team members accountable
Exploit suspected software and hardware vulnerabilities and inspect network traffic for data leakage
Plan and develop penetration methods, scripts and tests
Create reports and remediation recommendation from findings
Presenting findings and risks to both technical and non-technical audiences
Provide business and data Intelligence supporting threat analysis
Work closely with business and technology managers to fix processes/procedures for data protection
Engage with vendors and 3rd parties in the development and execution of security testing
Manage and review our attack surface. Assign and delegate remediation actions to the Business
Effectively participate in data governance and risk compliance plans
Raise incidents involving the potential for data loss or threats against data
Reporting and Metrics to support program objectives
Qualifications and Competencies:
Minimum 5 years of work experience in penetration testing & application security testing
Experience in performing security assessments using Kali Linux, Metasploit and other similar tools
Proficient in using PowerShell, Perl, Ruby and other similar languages to create penetration testing solutions
Experience with Attack Surface Management tools and processes
Foundational level of knowledge and experience with administering enterprise-level Information Technology systems including networks virtualization, could, operating systems, storage, databases, etc.
Ability to work both independently and as part of a small, distributed team
Breach/Attack simulations and tabletop exercises
Flexibility to work outside regularly scheduled/normal business hours as required
Commitment to security training and earning corresponding certifications
Highly motivated and self-directed
Excellent verbal and written communication skills
Passion for solving complex problems
Ability to prioritize, schedule and track to deadlines
Required: Degree in a related field or at least 5 years relevant professional experience
Desired: Technical professional security certification such as CEH, GPEN, or similar
US Person as defined under EAR PART 772 AND ITAR 120.15
Crane Co. is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, or national origin or any other characteristic protected under applicable federal, state, or local law.
Job Abstracts is an independent Job Search Engine. Job Abstracts is not an agent or representative and is not endorsed, sponsored or affiliated with any employer. Job Abstracts uses proprietary technology to keep the availability and accuracy of its job listings and their details. All trademarks, service marks, logos, domain names, and job descriptions are the property of their respective holder. Job Abstracts does not have its members apply for a job on the jobabstracts.com website. Additionally, Job Abstracts may provide a list of third-party job listings that may not be affiliated with any employer. Please make sure you understand and agree to the website's Terms & Conditions and Privacy Policies you are applying on as they may differ from ours and are not in our control.
We would like to take a second to Welcome You to Job Abstracts, the nation’s largest Pure Job Board. With over 3.1 million job listings from 15,000+ Companies & Organizations, we help job searchers find careers that match their interests. As an anonymous user, you have probably discovered how easy our system is to use. However, you have just scratched the surface of what we can offer.
We encourage you to Register so you can use our most powerful features: searching with multiple terms, setting up multiple locations, establishing favorite companies, and accessing your search history. If you find a job you like, you can apply directly for it, and then, keep notes on it. We will also keep a lookout for jobs that match your search terms and email you when we find something you may like.
You can register for free and the system is free to use. If you like our system so far, click on Register and unlock the power required by serious job searchers.
Any time you conduct a search, the system shows you job matches, ranked by their Relevance Score (RS).
The score is calculated by a proprietary algorithm that uses Intelligent Machine Learning.
The Relevance Score tells you how well the job opportunity matches your search term or terms.
When not logged in, the system is limited to one search term. Scores for single term matches are usually lower.
When you register, log in, and set up multiple terms prioritized by importance, the jobs found for you will receive a much higher Relevance Score.