Remote Information Security Engineer - DevSecOps

Location US-TN-Nashville
Job ID
2021-25514
Job Family
Information Technology

Overview

We are looking for an innovative Remote Information Security Engineer - DevSecOps to join our team! 

 

The global church is quickly moving towards more digital ministry solutions. Lifeway is hitting the gas pedal and moving towards creating cutting edge, trustworthy resources for churches. Our next Information Security Engineer - DevSecOps will help lead us into this new season.You will work closely with our Information Security team, other Lifeway IT teams (tech.lifeway.com), ministry areas, and work independently to plan and carry out security measures to monitor and protect sensitive data, networks and systems from infiltration and cyber-attacks. 

Responsibilities

 

  • Designs, builds, implement, and administers security systems and programs within the infrastructure
  • Orchestrates and performs vulnerability scanning and remediation
  • Obtains, analyzes and acts upon appropriate product, vendor, and security architecture information
  • Works with the security leadership to establish policies, governance and other security protocols
  • Investigates and responds to security events
  • Collaborates with internal and external entities to accomplish various tasks and projects
  • Keeps up with security threats as they evolve

Qualifications

Bachelor's degree in Computer Science, Information Technology, or equivalent industry experience

  • Preferred certifications: CISSP, CISA, CCSK

 

  • Two (2) years experience with administrating CyberArk OR Thycotic
  • Ability to thrive in fast-paced, high-stress situations
  • Strong analytical, communication and organizational skills
  • Knowledge of cloud security concepts and techniques
  • Experience with cloud computing (AWS EC2, S3), Docker, Kubernetes
  • Knowledge of server security hardening standards and vulnerability trends on Linux (Ubuntu/Alpine) and Windows servers, Windows and Mac workstations
  • Ability to communicate network and systems security issues to peers and management
  • Knowledge of anti-virus/anti-malware software, intrusion detection, firewalls and content filtering
  • Knowledge of risk assessment tools, technologies and methods
  • Knowledge of computer forensic tools, technologies and methods
  • Knowledge of disaster recovery and business continuity methods
  • Knowledge of applicable information security regulations including PCI and PII /  privacy law (GDPR, CCPA)
  • Understanding of static/dynamic code analysis of various programming languages: Java, Scala, React, GoLang, Rust, etc.
  • Familiarity with the following: Rapid7 InsightVM, Aqua Kubernetes Security, Okta, Cisco Duo, Cisco AMP, CIS Benchmarks, preferred 

 

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed