**Cyber Security Specialist - InfoSec and App Security** **Anywhere** **Type:** Contract-to-Hire **Category:** Security **Industry:** Life Sciences **Workplace Type:** Remote **Reference ID:** JN -022025-92782 **Date Posted:** 02/11/2025 **Shortcut:** http://careers.eliassen.com/2kKYSL + Description + Recommended Jobs **Description:** We are looking for a passionate Cyber Security professional who will be focused on enhancing the security of applications and systems for our client. This is a fully remote opportunity focused on Application Security where you will work to reduce the likelihood of coding, design or configuration vulnerabilities affecting production environments, thereby mitigating potential security risks. Your responsibilities will include collaborating with business and technical resources, reviewing project documentation, and referencing security policy to offer recommendations and guidance. _This is a contract to hire opportunity. Applicants must be willing and able to work on a w2 basis and convert to FTE following contract duration. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance._ _Rate: $40 - $45 / hr. w2_ **Responsibilities:** + Defining security requirements by evaluating business strategies and requirements; researching information security standards + Providing consulting services and security support to internal business and technology customers + Providing input and recommendations to the development teams related to architecture, design, coding practices and SDLC elements that could potentially impact the application or solution from a security perspective. + Validating controls for Encryption, Access Control, Web Application Vulnerability Detection, OWASP top 10 and other common web application security parameters. + Reviewing application architecture and design from an application security and information security perspective ensuring alignment with organization security standards and industry best practices. + Assisting with the development of secure coding standards + Providing technical expertise on secure software development and support of all associated activities, processes, and tools for protecting technology-based information + Ensuring that development is done in accordance with industry standards for secure development + Facilitating Periodic static code analysis utilizing existing standard service offering. + Facilitating dynamic and/or manual security testing utilizing existing standard service offering + Reviewing, developing, testing, and implementing security plans, products, and control techniques + Reviewing circumstances surrounding security gaps in and designs corrective actions + Maintaining awareness of security and technology trends and shares that knowledge with others + Evangelizing security policies, standards, and nonfunctional requirements where/when needed + Daily and Weekly Status Reporting - for Work in Process and Planned and issues + Documenting processes, procedures, assessment outputs, working papers documentation to support existing SDLC and governance requirements + Representing security and IT risks among other company risk departments and committees. **Experience Requirements:** + IT and security work experience with a broad range of exposure to systems analysis, application development, systems administration and over five years of experience designing and deploying security for Business products and services and Enterprise solutions at the enterprise level. + Preferred Certification in one or more Information Security relevant areas such as Audit (CISA), Security Management (CISM), Security Professional (CISSP), Cloud Security (CCSP, CCSK, AZ500 + Requires in-depth knowledge of security issues, techniques and implications across all existing computer platforms. + Experience with evaluating and implementing security controls as related to Cloud based services including SaaS, PaaS, IaaS. + Strong computer skills to operate effectively with company systems and programs; working knowledge of applicable computer applications used at ABC + Working knowledge of network solutions and systems + Good analytical and problem-solving skills + Ability to prioritize workload and consistently meet deadlines + Strong organizational skills; attention to detail + Ability to lead and provide direction to project/product teams + Strong consultative skills: ability to interface effectively with technical and non-technical leaders. + Understands Information Security as it relates to the business and other areas of IT; understands direct impacts and risks. + Demonstrated sound understanding of at least 3 of the following control frameworks such as ISO 27001/27002, HITRUST, PCI, NIST, GDPR and PCI + Business experience in a matrix Organization required **Education Requirements:** Bachelor's Degree in Computer Science, Information Systems or other related field, or equivalent work experience _Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range._ _W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality._ _Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact InfoSec@eliassen.com._ _About Eliassen Group:_ _Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate._ _Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status._ _Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!_