What are the responsibilities and job description for the Cyber Security Consultant/Expert position at FastTek Global?
- The Cyber Security team is seeking a fun, energetic and organized individual.
- Our group is the Business Information Security team within and you can make an immediate impact within this organization.
- We are also expanding our scope to encompass Tech.
- Act as a senior subject matter expert for secure coding, evaluating, and implementing [MR1] processes to mature application security leveraging existing tools.
- Provide consulting services to all product teams, providing advocacy, guidance and education on code security related problems by leveraging enterprise services across product lifecycles, identifying vulnerabilities and implementing secure solutions.
- Help define security standards around CI/CD pipelines, SAST/SCA/DAST testing processes, DevSecOps principles.
- Design, develop and test automation components for product and software especially security related.
- Facilitate getting all known control gaps identified and develop control improvement plans to raise operational maturity in partnership with Internal Controls team as part of GRC processes.
- Partner with Cyber Defense during incident response for teams, as required.
- Support and develop automation solutions that enable our product teams to build and deploy code quickly while giving them insights into security findings.
- Leverage cloud technology to promote fast provisioning and scalability with secure configuration management and monitoring.
- Implement industry best practices for container hardening and API configuration management.
- Cross between technology and business topics with ease and understanding being able to explain security topics to any audience.
- Operate independently and adapt to dynamic needs of the organization and changing teams.
- Experience supporting cloud-based platforms in an enterprise environment such as: Google Cloud Platform (GCP), Microsoft Azure, and Amazon Web Services (AWS).
- Experience using 1 or more SAST/SCA tools like CheckMarx, FOSSA, 42Crunch or BlackDuck
- Strong working knowledge of Info Sec policy, global purchasing policies and process, GRC component assessment, controls testing, etc.
- Strong understanding of the OWASP Top 10 security vulnerabilities and remediation techniques
- Working knowledge of a variety of regulations, control frameworks, and requirements, such as SOX, NIST 800-53, NIST 800-171, ISO 27001
- Working knowledge of API Security
- Security coding experience with languages like Java, Java Script, Python, Ruby or equivalent Strong understanding of Security Engineering concepts around key management, authorization, Cloud Security etc.
- Security architecture experience collaborating with software product teams.
- Experience with Git/GitHub or equivalent source control repositories.
- Experience using a centralized logging solution such as Splunk or Datadog for monitoring and reporting.
- IT operations, security, and/or infrastructure experience in an enterprise environment.
- Experience with vulnerability management with understanding of CVEs, CWEs and how to research and manage risks.
- Comfortable communicating with different levels and audiences effectively to gain attention collaboratively while not causing panic or animosity.
- A strong drive to keep learning new tools, ideas, techniques and methodologies to change culture to one based on building security and privacy into solutions from inception.
- 4 years’ experience in cybersecurity analysis, vulnerability management, security consulting, secure software engineering.
- Certifications are highly valued (CISSP, CISA, CISM, etc.)
- Bachelor’s degree in business, Cyber Security, IT management, Risk Management, Computer Science, or Computer Engineering or any related field
- Master’s degree in cyber security, Computer Science, Software Engineering, or a related field.
At FastTek Global, Our Purpose is Our People and Our Planet . We come to work each day and are reminded we are helping people find their success stories . Also, Doing the right thing is our mantra . We act responsibly, give back to the communities we serve and have a little fun along the way.
We have been doing this with pride, dedication and plain, old-fashioned hard work for 24 years !
FastTek Global is financially strong, privately held company that is 100% consultant and client focused .
We've differentiated ourselves by being fast, flexible, creative and honest . Throw out everything you've heard, seen, or felt about every other IT Consulting company. We do unique things and we do them for Fortune 10, Fortune 500, and technology start-up companies.
Benefits
Our benefits are second to none and thanks to our flexible benefit options you can choose the benefits you need or want, options include:
- Medical and Dental (FastTek pays majority of the medical program)
- Vision
- Personal Time Off (PTO) Program
- Long Term Disability (100% paid)
- Life Insurance (100% paid)
- 401(k) with immediate vesting and 3% (of salary) dollar-for-dollar match
FastTek Global was named one of the Top Workplaces in Michigan by the Detroit Free Press in 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021 , 2022 and 2023!
To view all of our open positions go to: https://www.fasttek.com/fastswitch/findwork
Follow us on Twitter: https://twitter.com/fasttekglobal
Follow us on Instagram: https://www.instagram.com/fasttekglobal
Find us on LinkedIn: https://www.linkedin.com/company/fasttek
You can become a fan of FastTek on Facebook: https://www.facebook.com/fasttekglobal/
Cyber Security Specialist
Advanced Technology -
Troy, MI
Cyber Security Specialist
The Ascent Group, Inc. -
Sterling, MI
Cyber Security Analyst
KYYBA Inc -
Troy, MI