18 May
Application Security Senior Manager
Georgia, Atlanta , 30301 Atlanta USA

Primary Location: 6305 Peachtree Dunwoody Rd, Atlanta, GA, USA

Division: Cox Communications Inc

Job Level: Manager/Senior Manager

Travel: No

Schedule: Full-time

Shift: Day Job

Requisition Number: 213015 Cox Communications is looking for a Application Security Senior Manager that will report to the Senior Director of Security Architecture and Privacy. This individual will be responsible for leading a team of application security specialists in evaluating the security of in-house and third-party software, developing and executing red team exercises, and developing standards related to software and application programming interfaces (API). Current application security initiatives involve static source code analysis, dynamic application security testing, evaluation of third-party libraries for known vulnerabilities, ensuring regular secure coding training, implementing methods to manage secrets, and working with the blue team on developing exercises based on current detection capabilities. This individual will manage two direct reports along with the project-based resources performing security testing. Frequent interaction with other teams including development and security leadership will be required and the expectation is that this individual will be able to operate independently to generate subtasks that are part of the broader solutions being deployed. Successful candidates will demonstrate strong business acumen and possess a blend of general business, technology, and security competencies. Specifically, this individual will have a versatile background, critical thinking, and analytical capabilities, as well as a proven ability to bridge organizational boundaries to implement security controls and risk mitigation strategies. The individual must also possess the desire to drive efforts to their conclusion as needed.

Primary Responsibilities and Essential Functions:
  • Manages the pipeline for assessments to fully utilize resources while managing development team expectations
  • Reviews assessment reports for accuracy and business impact; provides readouts to technology leadership and business leadership
  • Identifies and implements new opportunities to improve the effectiveness and efficiency of security testing
  • Develops new methods to prevent security vulnerabilities in code and detect/remediate security vulnerabilities earlier in the development cycle
  • Works with the risk management team to track the remediation of vulnerabilities identified during assessments
  • Engages with teams across Technology to understand their needs in order to build security into technologies and solutions
  • Manages the configuration and makes decisions on the use of the following:
  • Static source code analysis tools
  • Dynamic application security tools
  • Web application firewall
  • Secrets management
  • Provides weekly metrics on assessments and application security initiatives
  • Develops application security standards and configurations to be implemented by project teams
  • Assists as requested with security issues that might drive architectural changes
  • Ensures compliance to security architecture standards and processes
  • Works with cross-functional teams, supports the assessment of new security technologies, their viability, risks and creates initial points of view followed by recommendations on how they should be leveraged to enable and protect the environment
  • Understands technology and product roadmaps that are influenced by evolving technologies and facilitate the continuous revisions to take future impacts into account
  • Conducts research and development of new security tools and technologies to enhance and protect end customer experience
  • Provides communication on relevant external security trends or events to the Cox Technology organization or broader organization, as required

Qualifications:

Minimum:
  • 8+ years of experience working in security architecture, design, or development across multiple domains of information security
  • Direct experience managing security solution implementations
  • Direct experience in utilizing and implementing Secure Software Development Lifecyle methodologies

Preferred:
  • BS/BA in a related discipline required (i.e., Computer Science, Management Information Systems, Computer Engineering, etc.) or an additional 3 years of experience directly in security
  • Experience utilizing Jenkins for builds and deployment
  • Experience with security testing tools such as Veracode, Fortify, Burp Suite, and Qualys
  • Familiarity with Service Orientated Architecture Governance and Application Programming Interface Management concepts and implementations
  • Familiarity with Public Key Infrastructure deployments and associated services
  • 2+ years practical experience developing in Java 7, Java 8, and/or PowerShell.
  • Experience with enterprise single sign-on and familiarity with OAuth, SAML, or WS-Federation protocols
  • Experience with cloud-based or Software as a Service security solutions
  • Big Four consulting background or Fortune 500 company experience
  • Telecom/Cable industry experience
  • At least one relevant industry certification - CISSP, CISM, CISA
Who We Are

About Cox Communications Cox Communications is committed to creating meaningful moments of human connection through broadband applications and services. The largest private telecom company in America, we proudly serve six million homes and businesses across 18 states. Were dedicated to empowering others to build a better future and celebrate diverse products, people, suppliers, communities and the characteristics that makes each one unique.

About Cox We are the Cox family of businesses. Weve been making our mark since 1898 by building and evolving world-class businesses, staying true to our values, and encouraging top talent to always look for growth and impact while building a career with us. Our primary divisions - Cox Communications and Cox Automotive - are driving a new wave of innovation, powering smart cities with powerhouse broadband communications and pioneering greener, more progressive transportation alternatives for individuals and fleet operators. Were also expanding into new spaces like cleantech and healthcare to rev up our momentum toward building a better future for the next generation. Were looking for the talent today who will be our leaders tomorrow. Sound intriguing? Learn more about where we are today, where we hope youll be going with us, and the common purpose that unites us at coxenterprises.com. Cox is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individuals age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Statement to ALL Third-Party Agencies and Similar Organizations: Cox accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Cox employees, Cox hiring manager, or send to any Cox facility. Cox is not responsible for any fees or charges associated with unsolicited resumes.


Related jobs

Report job