*Position: Cyber Security Engineer :: [USC/GC/EAD]Location: Barrington (IL), San Ramon (CA), Waukesha (WI), Seattle (WA).Duration: 6+ Months On-Site contract plus extension*
*Interview mode: Phone than Skype.Job Description:*As a Principal Cyber Security Consultant, you will be responsible for • Functioning as main technical point of contact for product teams as it relates to cyber security & privacy. • Conducting complete lifecycle security architecture and technical assessments. *• Leading cross-functional projects and teams in establishing security development lifecycle practices within healthcare applications.• Collaborating with Principal Engineers, Architects and other design engineering personnel to assure integration of Privacy and Security requirements into products* • Scheduling and leading all Privacy/Security related reviews as needed for design engineering activities • Communicating with product teams on all privacy/security requirements and advocating compliance to process requirements • Working directly with customers to understand their Privacy/Security concerns and requirements. • Governing remediation, mitigation and risk acceptance process emerging from security assessment activity. • Engaging with development teams and assisting them in analyzing security results and designing and implementing remediations/mitigations where appropriate. • Reviewing customer-specific security process requirements (US DoD, etc.) and facilitating action in engineering teams to meet requirements • Collaborating with Regional Privacy focal points to ensure privacy regulations are identified and assessed for impact on GE products and business activities • Recommending changes to Engineering Standards based on new regulations or business requirements • Establishing and maintaining governance processes to assure ongoing compliance to design engineering Privacy/Security requirements • Supporting Privacy/Security incident response activities pertinent to design engineering and secure development, through investigations, corrections, corrective actions, and preventive actions • Recommending improvements to Privacy program practices *Minimum Qualifications• Bachelor's Degree in a relevant field (e.g. Computer Engineering, Computer Science, Information Security) or in a STEM major (Science, Technology, Engineering, or Math).* • 8+ years full-time information security experience – emphasis on technical assessment (system / web application vulnerability assessment, penetration testing, white-box code analysis, etc) and security architecture (design of controls, secure system design, understanding of identity and authentication management, etc.) *Eligibility requirements• Legal authorization to work in the U.S. is required. GE may agree to sponsor an individual for an employment visa now or in the future if there is a shortage of individuals with particular skills.* • Must be willing to work out of a GE Healthcare office location. • Must be willing to travel. *Desired Qualification:• 3 - 5 years of information security consulting experience.• Experience with Java, .Net and Javascript and associated testing and development technologies (e.g. JUnit, JBehave, Gherkin/Cucumber)• Experience in a broad range of information security domains – security architecture, security operations, fuzzing, penetration testing, SAAS/PAAS/IAAS/Cloud Security, Systems Management* • Experience with Security Development Lifecycle processes such as Threat Modeling desired • Project and program management experience • Healthcare domain experience desired • Organization and communication of complex information • An understanding of information security risk management – exposure to risk concepts and models like FAIR, OCTAVE, etc. a plus. • Understanding of interdependence between software design and cyber security – software development experience a plus*.* Thanks Regards *Steven Olson* (Technical Lead) *Ennovace Inc* Ph: 214 541 9081 F: 972-262-9006 ste...@ennovace.com www.ennovace.com 1801 S O'connor Rd Irving TX 75061 Disclaimer: We respect your Online Privacy. This e-mail message, including any attachments, is for the sole use of the intendedrecipient(s) and may contain confidential and privileged information.Any unauthorized review, use,disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject line at rem...@ennovace.com and mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mails to you. We are sorry for the inconvenience. -- You received this message because you are subscribed to the Google Groups "SAP Resource Center" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-resource-center+unsubscr...@googlegroups.com. To post to this group, send email to sap-resource-center@googlegroups.com. Visit this group at http://groups.google.com/group/sap-resource-center. For more options, visit https://groups.google.com/d/optout.
