Dell - Senior Advisor - Security Analysis - Application Security

Job Responsibilities :

Dell is looking for a Security Analysis Sr Advisor to join the Global Information Security organization, responsibilities to include:

Consult with internal business teams and provide guidance on:

- Secure Development and Application Security

- Infrastructure Design Requirements

- Dell Policies and Standard

- Procedural guidance to facilitate project execution in accordance with Dell practice

- Risk associated with initiatives and policy deviation requests

- Vendor Management Practices

- Compliance implications of design decisions in application and infrastructure design

- Manage policy exception requests associated with project engagements through standard review and dispensation processes.

- Ensure customer satisfaction through professional engagement and use of a risk based approach.

- Investigate complex, and sometimes historic practices/solutions to determine gaps and needed improvements and facilitate migration to a preferred state.

- Work with Business and Sr. Management as required to facilitate resolution to challenging business problems/objectives in a secure way.

- Develop and maintain comprehensive documentation of engagements performed and risks identified.

- Perform other duties as required.

Required Skills :

- Broad understanding of security technologies and frameworks.

- Practical knowledge of application and network security concepts.

- B.S. Degree in IT or equivalent.

- Understands more advanced concepts of systems and network administration.

- Attitude of balancing business need and benefit vs. security risk.

- Understanding of secure coding practices and standard code defect issues such as un-validated input, SQL injection, X-Site Scripting, hard coded credentials, etc. and their implications to system security state.

- Strong familiarity with OWASP application security program

- Experience with system Threat Modelling (preferably to STRIDE methodology)

- Very strong written and oral communication skills with experience in creating and reviewing technical documentation.

- Must work well with others as part of larger team and be able to collaborate on cross functional teams.

- Understands, applies and may adapt fundamental concepts, practices and procedures for diverse engagement types.

6+ Years Information Security experience.

9+ Years of IT experience.

CISSP, CISA, CEH or similar certification preferred.