Skip to Main Content

Search by Location

Job Matching Already Registered?

Senior Application Security Analyst/Manager

Location Burlington, North Carolina Job ID 19-80179

LabCorp is seeking a Senior Application Security Analyst/Manager for its Burlington, NC location. The Senior Application Security Analyst/Manager will report to the Director of Informatics and Data Protection, within the Office of Information Security. This position will lead and implement enterprise strategy for application security, and will partner with various business and technical teams to ensure this strategy is carried out.

Responsibilities:

This position provides technical leadership in the areas of application security and data protection. The duties of this position include, but not limited to:

- maintain application inventory

- conduct annual risk assessment on applications

- develop and implement enterprise strategy for securing enterprise applications

- help maintain/update LabCorp's security policies relevant to secure software development lifecycle (SDLC)

- participate in application security (SAST, DAST, RASP) tasks across web, mobile and cloud applications

- assist in implementing the integration of secure development standards, tools, and processes into SDLC

- produce relevant application security metrics that demonstrate a continually improving application security posture

- work closely with Development, Enterprise Architecture, and DevOps teams for successful application security program outcomes

- keep up with emerging threats and global regulations that impact application security

- work closely with Data Protection, Risk Management, Compliance, Legal, and Internal Audit teams to understand external compliance requirements and implement appropriate technical controls

- develop and maintain data and application security standards and evangelize those to appropriate staff

- participate in security incident handling and investigations as required

- interact with and manage vendors, service providers, and contractors regarding security products and services

- manage and/or provide guidance to junior members of the team

Requirements

License/Certification/Education: Normally B.S. Degree required w/5-7 years of experience.

Qualifications:

Minimum Required:

- minimum 3-5 years of experience in information security in the area of application security

- understanding of software development lifecycle and DevOps process

- understanding of common application vulnerabilities, including OWASP top 10

- working knowledge of common application security testing techniques

- proven experience and success with application security design and implementation

- proven experience with information security best practices

- proven project management and organizational skills -- specifically managing multiple concurrent projects

- strong interpersonal, written, and oral communication skills

- highly self-motivated and directed professional, with attention to detail

- excellent analytical, problem-solving and decision making abilities

- ability to work independently and effectively prioritize tasks in a high pressure environment

- experience working in a team-oriented and collaborative environment

Preferred Skills:

- Bachelor's or Master's Degree in Information Systems, Computer Science or related discipline is highly desired

- CISSP or equivalent certification is highly desired (or obtain within 2 years of joining)

- understanding of cryptography principles, key management and PKI

- understanding of cloud and mobile technologies is desired

- development or scripting knowledge is desired

- experience in developing and managing security policies is desired

- understanding of industry standards and compliance requirements related to information security -- especially NIST 800-53, ISO 27001, HIPAA, and PCI DSS

Shift

1

Schedule

Monday through Friday, 8:00-5:00

Join Our Talent Community

Interested In:Search for a category and select one from the list of suggestions. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.

  • Management, Burlington, North Carolina, United StatesRemove
  • Information Technology, Burlington, North Carolina, United StatesRemove

Explore More