{"4819416b440a0e00441d410f48320b151349170d1a716c42534c4307060f4b5473130d0207060949071c6b305349585f5e010c1b551d541a48321e020649150400005e296e485f12060d4207003018040d0e044c1d1b1d716c42534c4307060f4b7511555f595d-bdf101df0fcd9c9e38a88299ba8ee401":{"location":"New York City, NY","jobPath":"https://jobviewtrack.com/en-gb/job-4819416b440a0e00441d410f48320b151349170d1a716c42534c4307060f4b5473130d0207060949071c6b305349585f5e010c1b551d541a48321e020649150400005e296e485f12060d4207003018040d0e044c1d1b1d716c42534c4307060f4b7511555f595d/bdf101df0fcd9c9e38a88299ba8ee401.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"New York State","salary":"","summary":" Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Certified in the Governance of Enterprise IT (CGEITprogram Control Objectives for Information Related Technologies (COBIT) and Center for Information Security (CIS) Critical...","source":"careerjet","job":"4819416b440a0e00441d410f48320b151349170d1a716c42534c4307060f4b5473130d0207060949071c6b305349585f5e010c1b551d541a48321e020649150400005e296e485f12060d4207003018040d0e044c1d1b1d716c42534c4307060f4b7511555f595d-bdf101df0fcd9c9e38a88299ba8ee401","posted":"04-Jun-25","jobTitle":"Financial Services Specialist 1 (Cybersecurity), SG"},"1c18417e623c4f3d682c222a3c412733676920483a3c72297c7b7d44263a264317525b-48e2621aa694efe38738c77c20664e0b":{"location":"Santa Ana, CA","jobPath":"https://jobviewtrack.com/en-gb/job-1c18417e623c4f3d682c222a3c412733676920483a3c72297c7b7d44263a264317525b/48e2621aa694efe38738c77c20664e0b.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Pacific Western Bank","salary":"","summary":", CISM, CGEIT, or CRISC are highly desirable. Proven experience in a senior level role within IT governance, risk management. Strong knowledge of IT governance frameworks (COBIT, ITIL, NIST, ISO 27001). Experience with regulatory compliance (GDPR, SOX, HIPAA...","source":"careerjet","job":"1c18417e623c4f3d682c222a3c412733676920483a3c72297c7b7d44263a264317525b-48e2621aa694efe38738c77c20664e0b","posted":"07-May-25","jobTitle":"AVP, IT SOX"},"131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419-3a33cfa9b0dd5baff90c4dd360f402e6":{"location":"Houston, TX","jobPath":"https://jobviewtrack.com/en-gb/job-131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419/3a33cfa9b0dd5baff90c4dd360f402e6.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Halliburton","salary":"","summary":" Management, or related field. Masters preferred Certifications: CISSP (required); CISA, CIA, CGEIT, or CRISC (preferredtaxonomies, risk methodologies, and risk registers aligned with ISO 31000, NIST AI RMF, ISO 42001, NIST CSF, and COBIT frameworks...","source":"careerjet","job":"131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419-3a33cfa9b0dd5baff90c4dd360f402e6","posted":"08-Jun-25","jobTitle":"Senior Manager, Security Risk"},"131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419-a864de2a756fb25c3d65d08200b341f3":{"location":"Houston, TX","jobPath":"https://jobviewtrack.com/en-gb/job-131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419/a864de2a756fb25c3d65d08200b341f3.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Halliburton","salary":"","summary":" Management, or related field. Masters preferred Certifications: CISSP (required); CISA, CIA, CGEIT, or CRISC (preferredtaxonomies, risk methodologies, and risk registers aligned with ISO 31000, NIST AI RMF, ISO 42001, NIST CSF, and COBIT frameworks...","source":"careerjet","job":"131d417e480a0601555473060b141c0e11595425081d4b4c585f2f370a0d5206491711413c0e164b5425081d4b4c585f2f370a004e1b52433a081d0c456d150608144f593f7e48071a1c4e005943250000060245066a3a164442525f0d290e004613451169535f565419-a864de2a756fb25c3d65d08200b341f3","posted":"07-Jun-25","jobTitle":"Senior Manager, Security Risk"},"1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516-bca5d6a4d6880f0646578ef13aa92435":{"location":"Providence, RI","jobPath":"https://jobviewtrack.com/en-gb/job-1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516/bca5d6a4d6880f0646578ef13aa92435.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"IGT","salary":"$59795 - 122400 per year","summary":" such as IT certification from ISACA (CISA, CGEIT, CRISC), CISSP, CIA is strongly preferred, although equivalent experience mayfor Information and Related Technology (COBIT) framework Prior experience auditing or administering SAP systems (ECC, CRM, HANA, S/4...","source":"careerjet","job":"1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516-bca5d6a4d6880f0646578ef13aa92435","posted":"05-Jun-25","jobTitle":"IT Auditor IV"},"1248417e480a06015554690d1c041c09044c54291c17435f3f7e480a060155546937482201091655181c081d5e2974790d2d011a42064e0204412f120149006a201d5e4e4f434c084f2f52104917482201091655181c081d5e296e48430d001c07374f0d1b140213044e004828064e42492c185d575a-db8809569c44ab895f25a0f5d3cfccdf":{"location":"Phoenix, AZ","jobPath":"https://jobviewtrack.com/en-gb/job-1248417e480a06015554690d1c041c09044c54291c17435f3f7e480a060155546937482201091655181c081d5e2974790d2d011a42064e0204412f120149006a201d5e4e4f434c084f2f52104917482201091655181c081d5e296e48430d001c07374f0d1b140213044e004828064e42492c185d575a/db8809569c44ab895f25a0f5d3cfccdf.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Banner Health","salary":"","summary":" Internal Auditor (CIA), Certified Fraud Examiner (CFE), CISM, CRISC, CGEIT, CRMA are preferred. Also, knowledge of healthcareand control frameworks (example, COSO, CoBIT, ISO, NIST, PCI DSS). 2. Plans and executes IT related audits such as ITGCs...","source":"careerjet","job":"1248417e480a06015554690d1c041c09044c54291c17435f3f7e480a060155546937482201091655181c081d5e2974790d2d011a42064e0204412f120149006a201d5e4e4f434c084f2f52104917482201091655181c081d5e296e48430d001c07374f0d1b140213044e004828064e42492c185d575a-db8809569c44ab895f25a0f5d3cfccdf","posted":"07-Jun-25","jobTitle":"Senior Internal Audit IT Consultant"},"4818417b7d44220f4915470605040013677624483f2328624e5e58011c4e6a154e020f0403020b547625081d4b4c5840480a1b6c71154c0a0c001a0e0a4e75595f441218-2f9f3c4286d86e6d013bbb19fda72258":{"location":"New York City, NY","jobPath":"https://jobviewtrack.com/en-gb/job-4818417b7d44220f4915470605040013677624483f2328624e5e58011c4e6a154e020f0403020b547625081d4b4c5840480a1b6c71154c0a0c001a0e0a4e75595f441218/2f9f3c4286d86e6d013bbb19fda72258.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"MUFG","salary":"$115000 - 160000 per year","summary":", demonstrating a strong academic and extracurricular track record Preferred: Certified Information Systems Auditor (CISA...), Certified Information Security Manager (CISM), Certified Internal Auditor (CIA) or Certified in Risk and Information Systems...","source":"careerjet","job":"4818417b7d44220f4915470605040013677624483f2328624e5e58011c4e6a154e020f0403020b547625081d4b4c5840480a1b6c71154c0a0c001a0e0a4e75595f441218-2f9f3c4286d86e6d013bbb19fda72258","posted":"10-May-25","jobTitle":"Issues Management - Validation, VP"},"131e417e480a06015554690d1c041c09044c54291c17435f3f6443100a1c49154c4329140a0e1100370707005f47494c43106d3d421a490c1a412d080b5301041d12445f1d6c5800061a253d4e170d1300060900351d0d1a5e296e48430d001c07374f0d1b140213044e00695c4a121f-645b56e7f1b031e6f4d4071b6f6f6202":{"location":"Phoenix, AZ","jobPath":"https://jobviewtrack.com/en-gb/job-131e417e480a06015554690d1c041c09044c54291c17435f3f6443100a1c49154c4329140a0e1100370707005f47494c43106d3d421a490c1a412d080b5301041d12445f1d6c5800061a253d4e170d1300060900351d0d1a5e296e48430d001c07374f0d1b140213044e00695c4a121f/645b56e7f1b031e6f4d4071b6f6f6202.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Banner Health","salary":"","summary":" of CoBIT, COSO, Enterprise Risk Management (ERM) and Governance, and Risk and Compliance (GRC) concepts when needed. 9...) and strong technical audit skills. . PREFERRED QUALIFICATIONS Master's degree and/or professional designations such as CISM, CRISC...","source":"careerjet","job":"131e417e480a06015554690d1c041c09044c54291c17435f3f6443100a1c49154c4329140a0e1100370707005f47494c43106d3d421a490c1a412d080b5301041d12445f1d6c5800061a253d4e170d1300060900351d0d1a5e296e48430d001c07374f0d1b140213044e00695c4a121f-645b56e7f1b031e6f4d4071b6f6f6202","posted":"07-Jun-25","jobTitle":"Senior Internal Audit Consultant"},"1f1f41647944263a253d74433b041c110c43111b6b207c7b1d6479663c0b550249000d126f50571247-0c4ffbda4f8e33c33046bce96f310201":{"location":"Irvine, CA","jobPath":"https://jobviewtrack.com/en-gb/job-1f1f41647944263a253d74433b041c110c43111b6b207c7b1d6479663c0b550249000d126f50571247/0c4ffbda4f8e33c33046bce96f310201.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Allied Universal","salary":"","summary":" Governance certifications (COBIT 2019 Foundation, Certified in the Governance of Enterprise IT (CGEIT)) Enterprise ArchitectureInformation Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Cloud Security Professional (CCSP)) Data...","source":"careerjet","job":"1f1f41647944263a253d74433b041c110c43111b6b207c7b1d6479663c0b550249000d126f50571247-0c4ffbda4f8e33c33046bce96f310201","posted":"05-Jun-25","jobTitle":"SVP IT Services"},"1a1c417f4809001a42546d02060009021722390907124d4e4f2f7f010201531121565d-031e63e46246e0c1f84ecdba7a52b5f0":{"location":"USA","jobPath":"https://jobviewtrack.com/en-gb/job-1a1c417f4809001a42546d02060009021722390907124d4e4f2f7f010201531121565d/031e63e46246e0c1f84ecdba7a52b5f0.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Echelon Risk + Cyber","salary":"","summary":", CISA, CISM, CRISC, CGRC, CvCISO, CGEIT or similar. Education: Degree in Information Systems, Computer Science. Proficient in leading Cybersecurity Frameworks (e.g., CIS, NIST, ISO, SOC2, COBIT, ITIL, PCI, GDPR and HIPAA). Experience...","source":"careerjet","job":"1a1c417f4809001a42546d02060009021722390907124d4e4f2f7f010201531121565d-031e63e46246e0c1f84ecdba7a52b5f0","posted":"11-Jun-25","jobTitle":"Manager, vCISO - USA (Remote)"},"1f1c416944160a0d531b524327110b1504541d0707000a6e534a440a0a0b551d4e046a2e1e0217410001061d590b78434a0d010b4206490d0f632a0e1745171c0601286e534a440a0a0b551d4e046a2e1e0217410001061d592a0a1f1f57-7831221dff8720614e7b734f13f9ea97":{"location":"Irvine, CA","jobPath":"https://jobviewtrack.com/en-gb/job-1f1c416944160a0d531b524327110b1504541d0707000a6e534a440a0a0b551d4e046a2e1e0217410001061d590b78434a0d010b4206490d0f632a0e1745171c0601286e534a440a0a0b551d4e046a2e1e0217410001061d592a0a1f1f57/7831221dff8720614e7b734f13f9ea97.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Hyundai Capital America","salary":"","summary":" · Certifications such as CISSP, CISM, CRISC, CGEIT, CISA, and ITIL are highly desirable. · Proven strategic leader with deep(e.g., PCI DSS, SOX, GDPR). · Knowledge of security frameworks such as NIST, ISO 27001, and COBIT · Bachelor’s degree...","source":"careerjet","job":"1f1c416944160a0d531b524327110b1504541d0707000a6e534a440a0a0b551d4e046a2e1e0217410001061d590b78434a0d010b4206490d0f632a0e1745171c0601286e534a440a0a0b551d4e046a2e1e0217410001061d592a0a1f1f57-7831221dff8720614e7b734f13f9ea97","posted":"15-Jun-25","jobTitle":"Director, Cybersecurity Engineering & Operations"},"1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516-ec8db25d4c830325cb01b956c042e34a":{"location":"Providence, RI","jobPath":"https://jobviewtrack.com/en-gb/job-1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516/ec8db25d4c830325cb01b956c042e34a.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"IGT","salary":"$59795 - 122400 per year","summary":" such as IT certification from ISACA (CISA, CGEIT, CRISC), CISSP, CIA is strongly preferred, although equivalent experience mayfor Information and Related Technology (COBIT) framework Prior experience auditing or administering SAP systems (ECC, CRM, HANA, S/4...","source":"careerjet","job":"1a1c416479442e1b431d540c1a6327334569206a28064e4249425f655d5e164516-ec8db25d4c830325cb01b956c042e34a","posted":"06-Jun-25","jobTitle":"IT Auditor IV"},"494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245-f9e654f4e605cfd8f9dc0bd625374230":{"location":"Milwaukee, WI","jobPath":"https://jobviewtrack.com/en-gb/job-494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245/f9e654f4e605cfd8f9dc0bd625374230.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Molson Coors","salary":"","summary":" in Computer Science, Management Information Systems (MIS), Information Technology Management, or a related field CISA, CISSP..., CGEIT, CSX-P, CCAK certification or equivalent, or are currently studying towards obtaining one of these Strong knowledge...","source":"careerjet","job":"494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245-f9e654f4e605cfd8f9dc0bd625374230","posted":"04-May-25","jobTitle":"Senior IT Internal Auditor"},"494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245-af3c6d8ec532bad154e139ae7833f9de":{"location":"Milwaukee, WI","jobPath":"https://jobviewtrack.com/en-gb/job-494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245/af3c6d8ec532bad154e139ae7833f9de.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Molson Coors","salary":"","summary":" in Computer Science, Management Information Systems (MIS), Information Technology Management, or a related field CISA, CISSP..., CGEIT, CSX-P, CCAK certification or equivalent, or are currently studying towards obtaining one of these Strong knowledge...","source":"careerjet","job":"494f417e480a06015554690d1c041c09044c54291c17435f525f2f370a004e1b524321354e2610441d1c06012862690d640a1b0b551a410f48201b030c541b1a6b3a445f585f4305034e6601440a1c0e1c652c7454291c17435f525f2c565d561245-af3c6d8ec532bad154e139ae7833f9de","posted":"03-May-25","jobTitle":"Senior IT Internal Auditor"},"1949417e480a0601555461000b0e1b09110031100c105f5f545b48663f0b55074f0d090d4e2b0c4e111b49324948525843106d2f44174f1606154e221d45171d1d1a5c4e3f7e480a06015554651b0d021b130c56116a3916585852434c084f224e1a451069505b5e5411-b996908630ac3006ae42bc577bd5b373":{"location":"Whitehouse Station, NJ","jobPath":"https://jobviewtrack.com/en-gb/job-1949417e480a0601555461000b0e1b09110031100c105f5f545b48663f0b55074f0d090d4e2b0c4e111b49324948525843106d2f44174f1606154e221d45171d1d1a5c4e3f7e480a06015554651b0d021b130c56116a3916585852434c084f224e1a451069505b5e5411/b996908630ac3006ae42bc577bd5b373.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Chubb","salary":"","summary":" Account Executive Chubb Insurance Solutions Agency (CISA) is seeking a highly motivated individual to assume the role...","source":"careerjet","job":"1949417e480a0601555461000b0e1b09110031100c105f5f545b48663f0b55074f0d090d4e2b0c4e111b49324948525843106d2f44174f1606154e221d45171d1d1a5c4e3f7e480a06015554651b0d021b130c56116a3916585852434c084f224e1a451069505b5e5411-b996908630ac3006ae42bc577bd5b373","posted":"24-May-25","jobTitle":"CISA Senior Account Executive, Personal Lines"},"181d416479442e1b431d540c1a413c02084f000d6b3a7e0b7c58490d1b0155767206050e1a024569206a20270a62692f7f010201531100221d0507130a52755d5c-b6ca1d64c47124e585fe84ceab311729":{"location":"USA","jobPath":"https://jobviewtrack.com/en-gb/job-181d416479442e1b431d540c1a413c02084f000d6b3a7e0b7c58490d1b0155767206050e1a024569206a20270a62692f7f010201531100221d0507130a52755d5c/b6ca1d64c47124e585fe84ceab311729.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"CSX","salary":"","summary":" (e.g. CISM, CISSP, Security+, etc.) IT Governance and Risk Management (CGEIT, CRISC) Preferred Qualifications: Master One or more relevant professional certifications: IS Audit (CISA), Information Security (e.g. CISM, CISSP, Security+, etc.), IT Governance...","source":"careerjet","job":"181d416479442e1b431d540c1a413c02084f000d6b3a7e0b7c58490d1b0155767206050e1a024569206a20270a62692f7f010201531100221d0507130a52755d5c-b6ca1d64c47124e585fe84ceab311729","posted":"11-Jun-25","jobTitle":"Sr IT Auditor I - Remote"},"484d41794807070048184f0411413c0e164b5425081d4b4c585f2f300a0d4f1a4f0f07061747245510011d53674a534c4a011d6c751d5308482c0f090447111a6b325f4f54590d290e00461345116a350b040d4e1b040614530b704c4305080b557511555f595d-f6d15492ce7e0b5943354297efd73941":{"location":"New York City, NY","jobPath":"https://jobviewtrack.com/en-gb/job-484d41794807070048184f0411413c0e164b5425081d4b4c585f2f300a0d4f1a4f0f07061747245510011d53674a534c4a011d6c751d5308482c0f090447111a6b325f4f54590d290e00461345116a350b040d4e1b040614530b704c4305080b557511555f595d/f6d15492ce7e0b5943354297efd73941.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"EY","salary":"","summary":" within one year of start date one of the following certifications CA, CGEIT, CIA, CISA, CISM, CISSP, CMA, CPA or CRISC. Requiresand controls using COBIT, ITGI, ITIL and similar frameworks for IT governance and process effectiveness; IT program management risk...","source":"careerjet","job":"484d41794807070048184f0411413c0e164b5425081d4b4c585f2f300a0d4f1a4f0f07061747245510011d53674a534c4a011d6c751d5308482c0f090447111a6b325f4f54590d290e00461345116a350b040d4e1b040614530b704c4305080b557511555f595d-f6d15492ce7e0b5943354297efd73941","posted":"30-Apr-25","jobTitle":"Technology Risk Advisor - Technology Risk - Audit - FSO - Manager - Multiple Positions"},"4e4e416443100a1c49154c4329140a0e110015060d53694453595f0b031d2539410d09060b1545691a1c0c01444a510d6c110b075376693748201b030c545425081d4b4c585f2f2d3b4e6e1a54061a0f0f0b4561010c0007286253594816010f4b54630c06151c0809535425081d4b4c585f2c53585f12-4a7c058c06396941155e88909cd5af9f":{"location":"Santa Clara, CA","jobPath":"https://jobviewtrack.com/en-gb/job-4e4e416443100a1c49154c4329140a0e110015060d53694453595f0b031d2539410d09060b1545691a1c0c01444a510d6c110b075376693748201b030c545425081d4b4c585f2f2d3b4e6e1a54061a0f0f0b4561010c0007286253594816010f4b54630c06151c0809535425081d4b4c585f2c53585f12/4a7c058c06396941155e88909cd5af9f.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Palo Alto Networks","salary":"$111000 - 180500 per year","summary":". Certified Information Systems Auditor (CISA) certification is mandatory, Certified in Governance of Enterprise IT (CGEITstandards (e.g.,COBIT, ISO/IEC 27001, ISO/IEC 27701, ISO 22301, NIST, ITIL, COSO and IT Governance Frameworks). Excellent...","source":"careerjet","job":"4e4e416443100a1c49154c4329140a0e110015060d53694453595f0b031d2539410d09060b1545691a1c0c01444a510d6c110b075376693748201b030c545425081d4b4c585f2f2d3b4e6e1a54061a0f0f0b4561010c0007286253594816010f4b54630c06151c0809535425081d4b4c585f2c53585f12-4a7c058c06396941155e88909cd5af9f","posted":"04-May-25","jobTitle":"Internal Audit Manager - IT Risks and Controls"},"21266409":{"jobPath":"/jobs/21266409/application-security-engineer","source":"naylor","job":"21266409","jobTitle":"Application Security Engineer"},"1c4941794807070048184f0411412a0e1745171c06012879545e46442b075511431707136c3300431c06061f454c440d7f0d1c05253759010d134e350c531f6a3d1649435342410b0817264514535c51-9272468a1df3d4db99600debca6c1725":{"location":"Maplewood, MN","jobPath":"https://jobviewtrack.com/en-gb/job-1c4941794807070048184f0411412a0e1745171c06012879545e46442b075511431707136c3300431c06061f454c440d7f0d1c05253759010d134e350c531f6a3d1649435342410b0817264514535c51/9272468a1df3d4db99600debca6c1725.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"3M","salary":"","summary":": SANS OR ISACA CGEIT, CISA, CISM, ISO 31000 CRISC, ISO 27001 Lead Auditor Additional qualifications that could help you succeedframeworks and methodologies (NIST CSF/RMF, ISO 27001/27005, COBIT, etc.) Experience overseeing third-party cyber risk processes...","source":"careerjet","job":"1c4941794807070048184f0411412a0e1745171c06012879545e46442b075511431707136c3300431c06061f454c440d7f0d1c05253759010d134e350c531f6a3d1649435342410b0817264514535c51-9272468a1df3d4db99600debca6c1725","posted":"28-May-25","jobTitle":"Director of Cyber and Technology Risk Oversight"},"1f1b416c4e07001b4900002610040d121149020d6b36524e5e58590d190b253543000714001367633d3b2871664253485e655e5b1e4511-915d6cbde902baa4ff6d122b8e4a0691":{"location":"Whitehouse Station, NJ","jobPath":"https://jobviewtrack.com/en-gb/job-1f1b416c4e07001b4900002610040d121149020d6b36524e5e58590d190b253543000714001367633d3b2871664253485e655e5b1e4511/915d6cbde902baa4ff6d122b8e4a0691.html?affid=f74b1b169ff653e7ebdd310c58e7185b","employer":"Chubb","salary":"","summary":"Job Category: Client & Account Management Job Description: Title: Surplus Lines Licensed Personal Lines Account Executive Job Summary: We are seeking a highly motivated and skilled Surplus Lines Licensed Personal Lines Account Executi...","source":"careerjet","job":"1f1b416c4e07001b4900002610040d121149020d6b36524e5e58590d190b253543000714001367633d3b2871664253485e655e5b1e4511-915d6cbde902baa4ff6d122b8e4a0691","posted":"24-May-25","jobTitle":"CISA Account Executive, Surplus Lines"}}
Are you ready to elevate security practices to new heights? Our organization is on the lookout for a dynamicApplication Security Engineerwho will revolutionize our application security strategies. Located in the vibrant city of Pittsburgh, PA, thison-site roleis the perfect opportunity to collaborate with key stakeholders in Technology, Product, and Strategic Business Units to tackle the most pressing security challenges head-on.
As a Application Security Engineer, you will spearhead the secure software development lifecycle, embedding cutting-edge security practices at every step of our DevOps pipelines and application security processes. Your expertise in maturity models like DSOMM (DevSecOps Maturity Model), CI/CD pipelines, and vulnerability management tools will be crucial in transforming our security landscape. Join forces with our engineering, DevOps, Product, and Technology teams to implement automated security controls, threat modeling, and risk mitigation strategies that will shape the future of our software development lifecycle.
This role requires minimal travel and the ability to work in a fast-paced, dynamic environment. The position may involve working outside normal business hours to address urgent compliance or security incidents.
Key Responsibilities
DevSecOps & Maturity Measurement Implementation:
Assess, report, and assist with improving application security and DevSecOps Maturity, utilizing a measurement framework such as DSOMM or BSIMM, across the organization.
Define and implement security policies, standards, and best practices for DevOps, CI/CD pipelines, and cloud security.
Work with development and DevOps teams to integrate automated security testing (SAST, DAST, SCA, IaC security scanning, etc.) into pipelines.
Establish security gates in CI/CD workflows to prevent deployment of vulnerable code.
Application Security & Code Vulnerabilities:
Perform code reviews, static/dynamic security testing (SAST/DAST), and secure coding guidance to developers.
Identify and remediate vulnerabilities in application code, libraries, containers, and infrastructure as code (IaC).
Develop and enforce secure coding standards in alignment with OWASP, NIST, and other frameworks.
Conduct threat modeling and security architecture reviews for applications and services. For example, assist application teams with developing accurate data flow diagrams and developing appropriate identity management solutions.
Manage and mature Bot Management services for all applications. Assist with WAF management and maturity.
Improve secrets management and API security.
Vulnerability Management & Risk Reduction:
Manage and mature enterprise-wide Bug Bounty program (e.g. BugCrowd, HackerOne)
Track, assess, and coordinate the remediation of vulnerabilities across the application, infrastructure, and cloud environments.
Develop risk-based vulnerability management workflows and collaborate with engineering teams to drive fixes.
Monitor security dashboards and metrics, ensuring vulnerabilities are patched in alignment with SLAs.
Security CI/CD Automation & Tooling:
Implement security automation using APIs, scripts, and cloud-native security controls.
Work with DevOps engineers to integrate security tooling (like SemGrep, Snyk, Cycode) or within Jenkins, GitHub, GitLab CI/CD, or AWS DevOps.
Automate security findings triage, reporting, and prioritization processes.
Security Awareness & Collaboration:
Train and mentor developers on secure coding, threat modeling, DevSecOps, and vulnerability management best practices.
Collaborate with security operations, incident response, and compliance teams on security initiatives.
Participate in security assessments, penetration testing, and security incident investigations.
Qualifications & Experience
Bachelor’s Degree in Information Security, Cybersecurity, Computer Science, or a related field OR a minimum of 6 years’ equivalent experience in lieu of a degree
4+ years of experience in application security, DevSecOps, and security engineering OR a combination of 2+ years experience as a developer and 2+ years in application security, DevSecOps, and security engineering
Hands-on experience with DevSecOps tools (SAST, DAST, SCA, container security, IaC security), integrating security solutions within CI/CD pipelines, strong knowledge of secure coding principles (OWASP Top 10, SANS CWE Top 25), and familiarity with AI ML or LLM usage within security tooling.
Experience with vulnerability management, web app penetration testing tooling, and security certifications like CISSP, OSCP, GCPN, GCSA, AWS Security Specialty, or CSSLP are preferred.
Proficiency in Bot Management tooling, client-side monitoring tooling, and implementing maturity measurement frameworks such as DSOMM or BSIMM in an enterprise setting.
Ability to understand and communicate best-practice system architectures, data flows, and security controls within modern web applications and cloud (SaaS/PaaS, IaaS).
Excellent verbal and written communication skills, with the ability to communicate complex security concepts to technical and non-technical stakeholders.
HDJ + Associates is consistently named one of the top recruiting firms in the Pittsburgh area. We are a professional employment and search solutions company focused on recruiting the best possible talent available in today’s demanding market place.
Our clients often tell us that finding the right candidates to join their company is one of the most difficult tasks on their already overburdened task list.
Likewise, our candidates often tell us that finding the right position in today’s crowded market place is frustrating and overwhelming.
Let HDJ + Associates take the pressure out of the recruiting process for both candidates and employers. We will hit the employment bullseye each time streamlining the recruiting process to success.