Desired Skills and Experience
- Develop innovative information security solutions to ensure that security risks are reduced or eliminated.
- Provide specialized advice in information security to mitigate breaches and develop new policies, strategies, and tools to reduce security vulnerabilities.
- Advocate and champion our security policies, procedures, and tools through clear communication initiatives and strategies.
- Develop risk measurement criteria consistent with the Department’s mission, which will enable the organization to determine where to effectively apply security controls.
- Evaluate new IT technical architectures based on that risk measurement criteria and provide sound recommendations to ensure changes do not introduce vulnerabilities.
- Provide advice and expertise in all aspects of application security to ensure standard compliance.
- Build partnerships with various development teams to obtain consensus and appropriate solutions on information security initiatives.
- Technical expertise:
- Strong expertise in the area of IT authorization technologies and standards.
- Detailed knowledge of information security and secure coding techniques.
- Detailed knowledge of network configurations, security standards, and encryption.
- Professional skills in software engineering tools, web service technologies, object oriented programming languages, web technologies, middleware, and database management systems such as .NET, C#, ASP.NET-MVC, WPF, WCF, Angular, Typescript, Javascript, Microsoft SQL Server, MongoDB, Â Agile, Scrum.
- Secure development life-cycle; static code analysis, vulnerability testing, threat analysis, RBAC.
- Ability to work effectively in a team in a multicultural environment and to interrelate in a customer-friendly fashion with staff at all levels as well as with external counterparts.
- Ability to analyse business processes and translate customer requests into ICT solutions
- Advanced certifications in security, identity and access management (e.g. CISSP) is an asset.
- Experience in all aspects of software engineering processes with demonstrated abilities in following formal software methodologies and a disciplined approach to software engineering.
- Candidates for this position must be U.S. citizens.
- Minimum of seven years of relevant practical experience in managing and customizing IT authorization solutions.