• Analyze Application and supporting infrastructure to identify, mitigate, track, and remediate identified vulnerabilities.
• Make recommendations regarding the cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes).
• Manage and maintain vulnerability tooling and vulnerability managed service(s) to realize secure application CI/CD pipeline.
• Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
• Collaborate with Cyber Defense resources, Infrastructure teams, and Application/Product leads to manage and provide prioritized information to stakeholders.
• Perform system management on specialized cyber defense applications and systems to include installation, configuration, maintenance, backup, and restoration.
• Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
• Assist in assessing the impact of implementing and sustaining cyber defense posture.
• Assess and evaluate applications, hardware infrastructure, rules/signatures, access controls, and configurations of various platforms.
• Identify potential conflicts with the implementation of any cyber defense tools (e.g., tool and signature testing and optimization).
• Prepare reports that identify technical and/or procedural findings, which are accompanied with recommended remediation strategies/solutions.

• 5 to 7 years of experience in securing IT systems with 3 years of direct cybersecurity experience.
• 2 years of experience in securing or utilizing one of the major cloud platforms (Azure, AWS,and GCP) is desired.
• Recognize basic common coding flaws at a high level to support Application Security oversight.
• Expertise in security implications and ability to apply mitigation methodologies within centralized and decentralized environments across the enterprise’s computer systems insoftware development
• In depth understanding of security issues around steady state operation and management of software and incorporate security measures that must be taken when a product reaches its end of life.
• Knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense processes and audits.
• Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications).
• Strong communication skills to provide information and findings to stakeholders that will support the secure development of applications and deployment of infrastructure (onprem, cloud, and hybrid).

• Certified Information Systems Security Professional (CISSP)
• SANS/GIAC Certification (Various)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)

PrismHR is a fast-paced SaaS company which provides customers with a cloud-based payroll process software application. PrismHR also provides professional services including system implementation consulting, custom configurations, and training. Lastly, via the Company’s Marketplace platform customers and end users access other human resources and employee benefits applications from PrismHR’s Marketplace Partners.

Diversity, Equity and Inclusion Program/Affirmative Action Plan:
We have transformed our company into an inclusive environment where individuals are valued for their talents and empowered to reach their fullest potential. At PrismHR, we strive to continually lead with our values and beliefs that enable our employees to develop their potential, bring their full self to work, and engage in a world of inclusion.
Ensuring an inclusive environment for our employees is an integral part of the PrismHR culture. We aren't just checking a box, we are truly committed to creating a workplace that celebrates the diversity of our employees and fosters a sense of belonging for everyone. This is essential to our success. We are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about our roles but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for these open roles or other open roles. We particularly encourage applicants from traditionally under-represented groups as we seek to increase the diversity of our workforce and provide fair opportunities for all.
As a proud Equal Opportunity and Affirmative Action Employer, PrismHR encourages talent from all backgrounds to join our team. Employment decisions are based on an individual’s qualifications as they relate to the job under consideration. The Company’s policy prohibits unlawful discrimination based on sex (which includes pregnancy, childbirth, breastfeeding, or related medical conditions, the actual sex of the individual, or the gender identity or gender expression), race, color, religion, including religious dress practices and religious grooming practices, sexual orientation, national origin, ancestry, citizenship, marital status, familial status, age, physical disability, mental disability, medical condition, genetic information, protected veteran or military status, or any other consideration made unlawful by federal, state or local laws, ordinances, or regulations.
The Company is committed to complying with all applicable laws providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company and prohibits unlawful discrimination by any employee of the Company, including supervisors and co-workers.

Privacy Policy: For information about how we collect and use your personal information, please see our privacy statement available at https://www.prismhr.com/about/privacy-policy.

PrismHR provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. If you have any difficulty using our online system and you need a reasonable accommodation due to a disability, you may use the following alternative email address to contact us about your interest in employment at PrismHR: taglobal@prismhr.com. Please indicate in the subject line of your email that you are requesting accommodation. Only candidates being considered for a position who require an accommodation will receive a follow-up response.

#LI-ML1