Security Lead Job Description
Security Lead Duties & Responsibilities
To write an effective security lead job description, begin by listing detailed duties, responsibilities and expectations. We have included security lead job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Lead Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Lead
List any licenses or certifications required by the position: CISSP, NRA, FLS, ITIL, SANS, BLS, CCNA, PSP, CPP, CISA
Education for Security Lead
Typically a job would require a certain level of education.
Employers hiring for the security lead job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Associate Degree in Computer Science, Technical, Education, Engineering, Information Security, Business, Information Technology, Technology, Associates, Information Systems
Skills for Security Lead
Desired skills for security lead include:
Desired experience for security lead includes:
Security Lead Examples
Security Lead Job Description
- Develop and implement SAP security policies, processes, architecture, training, and communications
- Help manage security issue tracking, reporting and escalation as appropriate to Tower Lead
- Manage congruent relationships among the different development teams
- Pass all pertinent information to your relief, if applicable
- Respond to emergencies as required
- Investigate Incidents that may arise
- Maintain all data & photo ID/ access control (Lenel)
- Support development of a multi-tenant cloud security solution
- Plan, supervise and execute the delivery of team security operations
- Ensure all team members receive security orientation and training in accordance with team SOP
- Strong written and verbal communications skills with an ability to create business correspondence, the ability to communicate effectively at all levels of the organization including senior management levels
- Experience as an Application Developer or Application Security expert in working with Static Scanning tools HP Fortify, IBM Appscan
- Experience with AMAG
- Experience with Genetec
- Experience with DMP
- 10+ years of strong hands-on and progressive experience and technical depth in one, or more technology areas, including Data security, Infrastructure security, Endpoint/Platform security, Security Analytics, or Application security
Security Lead Job Description
- Enforcement of compliance and auditing of security policies and procedures
- Communicate with MOD and its security stakeholders to ensure team safety and security at all locations and during travel
- Coordinate the delivery of security services among different program activities
- Identify and evaluate the security risks associated with program activities and take appropriate action to control the risks
- Identify and develop partnership opportunities
- Assist in the creation and execution of security solutions strategies across partners, vertical diversification, and leadership initiatives including KPIs, project timelines, and resource requirements
- Assist with cultivating social impact, social enterprise investments/relationships, and alignment with the organizations product development strategy
- Engage key stakeholders through presentations, reports, and serve as a point of contact for sales teams within IT Security/Cyber security
- Work closely with internal stakeholders to initiate, manage and elevate relationships with potential and existing partners, especially marketing, programs, development, events and communications departments
- Preparation of visit authorization letters (VALs)
- Programming experience in languages (e.g., C/C++, Java, Python, Scala, R)
- Experience mentoring junior technologists
- Well networked and/or ability to network effectively with peer firms and corporate security peers across Europe and throughout the region, with law enforcement agencies and security services
- 3+ years’ experience in understanding security risks, identifying gaps and creating strategies, roadmaps, and architecture directions and patterns
- 3+ years’ experience in designing, architecting, and implementing complex enterprise applications, infrastructures, platforms and systems, addressing security, performance, scalability, and reliability
- Excellent communication skills, including listening, communicating with Sr
Security Lead Job Description
- You shall maintain full oversight of the end to end architecture in order to ensure that security controls are developed and assured in a manner which provides traceability to the operational and regulatory requirements
- Use of JPAS, e-FCL, and ISFD
- Coordination with customer security representatives to coordinate all security requirements
- Management of the facility clearance and other security requirements related to the facility and CAGE code
- Conduct security briefings, self-inspections and security awareness program briefings
- Maintain inventory logs for classified materials and equipment
- Conduct collateral and intelligence security briefings and debriefings
- Create / send collateral and program visit requests through JPAS
- Maintain SIMS database for the facility as needed
- Create and update Contract Security Classification Specifications (DD254s) for affiliated prime and subcontractors
- Hold and maintain appropriate technical security and technology qualifications, such as OSCP, CEH
- Support development of Enterprise-level security requirements
- Support end-to-end security activities from system design through ATO and Ongoing Authorization
- Lead tasks and supervise staff in developing draft computer security policies, standards, and guidelines
- Develop, recommend and implement security controls to meet information assurance requirements
- Perform security audits, evaluations, and risk assessments of complex operational data processing systems and facilities
Security Lead Job Description
- To participate in the Local Crisis Management Team, coordinating, training for managing crises (BCP, table top exercises, ), and communications across local affiliates during actual events
- Revise policy & controls for IT/Cyber
- Review regulatory guidance and conduct risk assessment
- Influence improved accreditation boundary risk posture & assessment results
- Conduct end user cyber security training of new or modified project portal functionality & management presentation
- Provide support related to integration assessment and internal/external surveillance
- Ensure that internal controls are effective in both design and operation and that they provide reasonable assurance that information is reliable, timely and complete
- Coaching and developing team of consultants and security analysts
- Establishing return on investment and business process improvements for investments in security programs and technologies
- Protect computer assets by helping to develop security strategies
- Design, develop, and maintain unique computer security tools and techniques for conducting computer security evaluations and risk assessments
- Execute Security Assessment and Authorization activities
- Ensure IT systems have all security controls in place and functioning properly in accordance with NIST 800-53A publication
- Evaluate/analyze vulnerability results
- Assist with external/internal audits for designated systems
- Report incidents within the timeframe prescribed by policy for incident response
Security Lead Job Description
- Build out of a system of record to model team, role and coverage assignments
- Engineer platform API’s and integrate with the firms workflow platforms
- Integration and fulfillment of entitlements into Active Directory and downstream systems such as Power Broker
- Development of audit and access certification tools
- Development of toolset to manage migration of servers from legacy access management solution
- Development of credential vaulting solution for App 2 app authentication
- Good understanding of Linux, VmWare
- Define deployment plan of future security changes such as acumen architecture and DS rolls for test and operational efficiency in terms of budget, schedule and resource availability and influence strategy accordingly
- Develop and implement the change management process with respect to recipe management throughout the lifecycle (cradle to grave) and management of proto material in HW and supplies in partnership with the Carnac and individual NPI program teams
- Appropriately flag strategy issues which may impact the business at the appropriate time
- Demonstrated experience conducting information system security controls assessments (SCAs) and applying standard auditing techniques during system security controls assessments, including the proper interpretation of the control requirements, determining if the artifacts provided are sufficient, and recommending remedial actions to the customer to ensure compliance
- Previous experience creating all necessary Certification and Accreditation/Security Authorization documentation
- Able to manage multiple systems depending on the size and complexity
- Demonstrated ability to deliver work related to security governance, strategy and risk
- Strong understanding of industry standards and frameworks, including ISO 27000 series, NIST 800 series, COBIT
- Knowledge of Application Security and Application Threat Modeling