Job Purpose/Mission/Summary Lexmark is looking for a new cybersecurity information technology professional who wants to join a team that knows technology, build processes, and spends their day securing Lexmark. This individual will work with various cybersecurity and project teams to make sure policies and controls are implemented and operationalized. They will also be responsible for working with cybersecurity architects to do threat models and risk mitigation strategies for various initiatives. They will also work with the cybersecurity operations teams to understand threats and improve processes by automating threat hunting and alert management.
You will need to be proficient in security automation and tooling, and possess strong communication skills, enabling you to collaborate effectively with various stakeholders while balancing competing priorities. This role presents a unique opportunity to contribute your expertise and experience to a fast-paced, innovative environment, and make a significant impact in ensuring the security of our organization's technology infrastructure.
Key Roles and Responsibilities: Responsible for implementing controls and securing enterprise information systems by developing and reviewing security requirements and technology solutions. Design and implement these controls using secure software development and deployment processes. Assist security operation teams during incident response or business continuity scenarios through building automation scripts to reduce or close security incidents. Evaluate and improve security controls around email, information, network, and cloud app protections through automation. Develop and maintain security automation and tooling. Stay up to date with emerging security threats and trends and adjust security measures accordingly. Analyze and build automation scripts to improve security of information systems. Analyze after action reviews, tabletop, red team, and penetration testers reports to develop risk mitigations. Participate and validate security threat intelligence and assess solutions. Coordinate with DevOps teams to advocate secure coding practices, and to escalate concerns related to poor coding practices. Educate and train staff on information system security best practices by being a security advocate Competencies, Skills, Knowledge & Abilities: Strong knowledge of secure coding practices, SDLC, DevOps principles, and cloud computing Experience with programming languages with proficiency on Python scripting Experience with MITRE AT&TCK, ISO, NIST Frameworks Experience with Secure Agile Framework processes and methodologies for implementations Strong understanding of cloud platforms and technologies Excellent organizational, communication, documentation, and project management skills Excellent communication and interpersonal skills, with the ability to work effectively in a team environment Education and Experience: Bachelor's degree in computer science, Engineering, Cybersecurity, or related field 3+ years of Information Technology experience