Job Detail

Manager of Application Security - Fully Remote - Magellan Health Services
Maryland Heights, MO
Posted: May 04, 2022 02:04

Job Description

The Manager of Application Security is responsible for building a comprehensive Application Vulnerability Management program that includes, Secure Software Development Lifecycle, Patch Governance, and Application Security.

Reporting directly to the Senior Director of Vulnerability Management, this position leads the Application Security Team.

This is a fully remote position, allowing you to work from the comfort of your own home from anywhere in the US.

Promotes a positive security culture for the organization by protecting the confidentiality, integrity, and availability of data and assets while assisting the company to successfully meet its strategic goals. Manages a team of Information Security Engineers and/or Analysts and is accountable for this team's performance in engineering, implementation, and maintenance of security processes and solutions throughout the enterprise according to policy and risk. Accountable for the team's ability to design, develop, and maintain the security environment and architecture to ensure assets are protected. Serves as a leader and mentor for their team, and others, providing master level expertise from various IT disciplines with focus in information security. Be a champion to their team and other business units to promote a secure organization through positive knowledge sharing, training, influences, and conduct.

  • Manages a team responsible for ensuring adequate security processes and solutions to mitigate or remediate identified risks sufficiently to meet business objectives, contractual and/or regulatory requirements.

  • Delivers Key Performance indicators to drive success to leadership.

  • Accountable for the development of security policies, standards and plans to ensure the protection of corporate data against unauthorized use, access, modification and destruction.

  • Accountable for the oversight and management of a functional area within the Office of Information Security, including supervision and mentorship.

  • Oversees the monitoring and compliance of information security policies and procedures.

  • Leads incident response activities, ensuring security incidents are properly contained, eradicated, and recovered.

  • Ensures proper security logs are generated and sent to the organization's SIEM.

  • Researches and implements emerging technologies to enhance the security portfolio.

  • Persistently evaluates adherence with defined policies and standards.

  • Leads team efforts with identifying, remediating, and/or mitigating vulnerabilities in the environment, ensuring appropriate response to high risk and aged findings.

  • Leads the development, design, implementation, and maintenance of a secure environment for Magellan Health.

  • Ensures Magellan information security processes and solutions are protected against a failure or attack that reduces the organizations ability to respond to security incidents.

  • Ensures Magellan processes and solutions are maintained securely and highly available to protect the confidentiality, integrity and availability of assets.

  • Accountable for the monitoring, systems revisions and patches are up to date.

  • Manages the teams changes to the solutions and remove unnecessary services.

  • Understands risks and impact to all downstream systems in the corporate environment and their interconnectivity

  • Helps build and drive a security aware culture that understand security risks and impact to all corporate solutions

  • Manages teams that perform forensic analysis and risk assessments for the entire environment.

  • Oversees and manages teams that support enterprise high-availability solutions running a complex arrangement of operating systems, including system updates, log analysis, access controls and backup.

  • Monitors, remediates and mitigates security violations for network, devices, servers and other assets.

  • Designs, implements and maintains security guidelines and a security infrastructure for Magellan Health.

  • Develops technical solutions to autonomously verify compliance with required technical controls.

    Other Job Requirements

Responsibilities

7+ years of IT experience.

3+ years of information security experience.

May substitute 2 or more relevant certifications for a year of experience.

Proven in-depth knowledge of network protocols and packet analysis tools such as tcpdump and Wireshark.

Detailed knowledge on network and host- based firewalls and intrusion prevention systems.

Detailed knowledge on proxy servers, SSL inspection techniques, load- balancers, reverse proxy servers, and web application firewalls.

Proven ability to develop custom threat signatures in response to zero-day and emerging security threats.

Detailed knowledge with security-related systems and applications, firewalls, packet analysis tools, intrusion detection/prevention, and web content filtering.

Detailed digital forensics and eDiscovery skills and experience.

Detailed knowledge of network infrastructure, including routers, switches, firewalls.

Knowledge of information security publications (e.g., NIST 800-53, 53A, 37).

Detailed knowledge of incident response, problem resolution, and vulnerability remediation.

Detailed knowledge of automated security testing. Ability to work with multi-discipline teams, cross- functional management.

Self-starter with the ability to lead tasks with demonstrated ability to work independently.

Strong verbal and written communication skills with the ability to collaborate effectively with other groups.

Able to effectively manage evolving and competing objectives and possess a mastery of information security tools and techniques.

Has strong leadership, communication, and negotiation skills.

Results driven with a bias for action.

General Job Information

Title

Manager of Application Security - Fully Remote

Grade

30

Work Experience - Required

Information Security, IT

Work Experience - Preferred

Education - Required

A Combination of Education and Work Experience May Be Considered., Bachelors - Information Security

Education - Preferred

License and Certifications - Required

License and Certifications - Preferred

CISSP - Certified Information Systems Security Professional - Enterprise

Magellan Health, Inc. is proud to be an Equal Opportunity Employer and a Tobacco-free workplace. EOE/M/F/Vet/Disabled.Every employee must understand, comply with and attest to the security responsibilities and security controls unique to their position; and comply with all applicable legal, regulatory, and contractual requirements and internal policies and procedures.



Job Detail


Company Overview

Magellan Health Services

Maryland Heights, MO