Security Engineer Information Security Cover Letter

I am excited to be applying for the position of security engineer information security. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for application security services including secure coding techniques and reviews, education & awareness, process and tools, security testing support and guidance for internal software development projects.

Please consider my experience and qualifications for this position:

• Experience with ISO 31000, 27005, 27001, HIPAA and/or other risk-centric standards and practices helpful
• Understanding and practical experience in internal certificate authorities, Microsoft Windows preventative and detective controls, Microsoft Active Directory design/architecture and security, data loss/leak prevention and multifactor authentication
• Has great writing, organizational, interpersonal and communication skills
• Analytical thinker with a high sense of urgency
• Embraces a fast-paced, start-up-style environment
• Loves to cross-train and build stronger teams
• Most of the work is carried out within a generally accessible, safe, indoor environment
• Familiarity with USMC IA policies and processes

I am excited to be applying for the position of security engineer information security. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for awareness and training to the application developments teams of the benefits of web application layer protection services, data protection services, code scanning services, etc.

Please consider my qualifications and experience:

• Pen testing, mitigate vulnerabilities, analyze potential threats
• Experience with Navy A&A
• Knowledge of IA and A&A role throughout the software and system development lifecycle
• Experience and certification as a navy qualified validator
• Knowledge in the various use cases for state-of-the-art cryptography
• PostgreSQL and BigQuery
• Security+ or CISSP (Training)
• Expert understanding of NIST 800 series publications and Risk Management Framework based security assessment and authorization

I submit this application to express my sincere interest in the security engineer information security position.

In my previous role, I was responsible for security expertise, advice, and thought to enterprise-wide initiatives applying security principles such as endpoint protection and compliance, privilege management, vulnerability management, external reputation, threat management as well as state of the art and emerging technologies such as cloud security, and next generation architecture.

Please consider my experience and qualifications for this position:

• Familiar with information security publications
• Familiar with computer forensic techniques and eDiscovery
• Familiar with reviewing automated security test results
• Familiar with network and host-based firewalls and intrusion prevention systems
• Working knowledge of the OSI model, TCP/IP, encryption standards, wired and wireless packet and network traffic analysis and troubleshooting using common packet capture and network tools
• Working knowledge of network level protocols and applications, including analysis, reverse engineering and troubleshooting
• Working knowledge of forensics and anti-forensics methodologies, including file and data recovery, MAC times, network forensics and mobile device forensics
• Working knowledge of application-aware next-gen enterprise firewall management, network ACL, VPN, DMZ, and content/application filtering

I submit this application to express my sincere interest in the security engineer information security position.

Previously, I was responsible for security consulting to the business to determine best way to minimize risk through the use and application of security controls.

My experience is an excellent fit for the list of requirements in this job:

• Knowledge of network security practices & tools (Firewalls
• Information Security Auditing experience
• Proficient in conducting security risk assessments
• Experience managing compliance with industry standards and requirements including ISO 27001, ISO 27018 and PCI-DSS
• Knowledge of cloud solutions desirable
• Thorough knowledge of NIST 800-53, ISO 27001/2, CIS Critical Security Controls, ITIL
• Deep technical understanding of TCP/IP networks, operating systems, infrastructure and cloud security
• Perform End point devices testing with DevSec and other business units

I submit this application to express my sincere interest in the security engineer information security position.

In the previous role, I was responsible for feeds for consumption for technology products to drive automation where available with next generation security solutions.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• RSA System Administrator
• Systems Engineer (Linux and Windows)
• Basic programming and script writing knowledge
• Strong data analysis and correlation abilities
• Experience with defining security incident communication processes
• Expertise with threat analysis risk management, configuration management, business continuity and contingency planning
• Strong knowledge of administrative, procedural and technical controls used to reduce security risks
• Advanced proficiency in network troubleshooting and diagnostic root cause analysis