🌎
This job posting isn't available in all website languages

Principal Cybersecurity Application Security Specialist

📁
Digital
📅
20011701 Requisition #

Equal Opportunity Employer: Minority/Female/Disability/Veteran

 

Waste Management (WM), a Fortune 250 company, is the leading provider of comprehensive waste and environmental services in North America. We are strongly committed to a foundation of operating excellence, professionalism and financial strength.  WM serves nearly 25 million customers in residential, commercial, industrial and municipal markets throughout North America through a network of collection operations, transfer stations, landfills, recycling facilities and waste-based energy production projects.

 

To enable our business to expand our lead in a market increasingly enhanced by technology, Waste Management is undertaking a substantial technology transformation. We are creating exceptional digital experiences that delight our customers and enable our employees to serve our customers more effectively. We are seeking talented Cybersecurity professionals to join the Waste Management team who are motivated to help enable digitization by developing processes and technical solutions that enable teams to deliver secure, reliable software with an increasingly agile mindset. With your skills and experience, we look for you to combine your technical expertise with industry best practices to align cybersecurity solutions with Waste Management business strategy.

 

I. Job Summary

The Principal Cybersecurity Application Security Specialist is recognized across the organization for functional expertise in application security and penetration testing.  The Principal Cybersecurity Application Security Specialist will be required to effectively translate business objectives and risk management strategies into specific security technologies and services and will serve as an expert resource for those technologies.

 

II. Duties and Responsibilities

The Principal Cybersecurity Application Security Specialist will be responsible for the following activities and functions:

 

  • Serve as the Subject Matter Expert for a collection of critical cybersecurity technologies, possessing the highest level of expertise in the design, deployment, maintenance and remediation of those technologies

  • Expert level of proficiency with application security scanning tools and foundational concepts of secure development principles

  • Expert level of penetration testing skill against cloud applications, traditional applications and infrastructure

  • Provides a clear technical capability roadmap for cybersecurity tools for which you are responsible, in coordination with Security Architecture

  • Coordinate with Cybersecurity leadership and business owners to determine business needs and requirements

  • Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts

  • Validate IT infrastructure, applications and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable

  • Review security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics

  • Liaise with other practitioners across the Digital organization to share best practices and insights

  • Mentor and grow junior level associates

 

III. Supervisory Responsibilities

 

Will coach and mentor less-experienced engineers and act as team leader on more complicated digital projects.

 

IV. Qualifications

The requirements listed below are representative of the qualifications necessary to perform the job:

 

A. Education and Experience

 

Education: Bachelor's Degree (accredited) in computer science, information systems, cybersecurity, or a similar area of study, or in lieu of degree, High School Diploma or GED (accredited) and 4 years of relevant experience.

 

Experience: A minimum of 7 years related work experience.  An additional four years of relevant work experience may substitute for the Bachelor’s degree. A Master’s degree can substitute for 2 years of work experience.

 

B. Certificates, Licenses, Registrations or Other Requirements

 

Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or Certified Information Systems Manager (CISM) preferred

 

C. Other Knowledge, Skills or Abilities Required to Contribute to Success

Technically advanced knowledge or in-depth skills in one or more of the following is required:

 

The Principal Cybersecurity Application Security Specialist should have a minimum of 5-7 years of direct, documented, and verifiable experience with the following:

 

  • Strong communication and presentation skills

  • Experience with deploying enterprise-wide, complex technology projects

  • Experience and strong working knowledge of managing security infrastructure (e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, and log management technology)

  • Experience and strong working knowledge of vulnerability management tools

  • Experience and a strong working knowledge of the methodologies to conduct risk assessment exercises on new applications and services

  • Full-stack knowledge of IT infrastructure:

    • Applications

    • Databases

    • Operating systems – Windows and Linux

    • Hypervisors

    • Networks – WAN, LAN, SCADA, Storage and Backup

    • Direct experience designing IAM technologies and services:

      • Active Directory

      • Lightweight Directory Access Protocol (LDAP)

      • Amazon Web Service (AWS) IAM

  • Experience leading the deployment of applications and infrastructure into public cloud services

 

V. Work Environment
Listed below are key points regarding environmental demands and work environment of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.

Normal setting for this job is an office setting.

Benefits
At Waste Management, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability. As well as a Stock Purchase Plan, Company match on 401K, and more! Our employees also receive Paid Vacation, Holidays, and Personal Days. Please note that benefits may vary by site.

If this sounds like the opportunity that you have been looking for, please click "Apply.”

 

Benefits
At Waste Management, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability.  As well as a Stock Purchase Plan, Company match on 401K, and more!  Our employees also receive Paid Vacation, Holidays, and Personal Days.  Please note that benefits may vary by site.

 

If this sounds like the opportunity that you have been looking for, please click "Apply.

Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

Houston, Texas, United States

📁 Digital

Requisition #: 20012399

Houston, Texas, United States

📁 Digital

Requisition #: 19015171

Houston, Texas, United States

📁 Digital

Requisition #: 20012992