IT Security Specialist
JAS Forwarding (usa), Inc.

Job Info

---

JAS is an international, non-asset-based supply chain services and solutions company. Our services include air and ocean freight forwarding, contract logistics, customs brokerage, distribution, inbound logistics, truckload brokerage and other supply chain management services, including consulting, the coordination of purchase orders and customized management services.

The Information Security Specialist is responsible for transforming IT Risk management, governance and compliance programs based on JAS business structures, strategies and priorities. The ISM leads JAS' programs for information security and cybersecurity, business continuity and vendor risk management.

This role represents security in the development, implementation and operations of overall product development and architecture. The design and documentation of robust security and risk management and mitigation programs, and the establishment of security policies, practices and controls are key areas of focus. This position serves as they key contact for information security audits and assessment initiatives including ISO 27000 series and similar industry recognized standards and regulations.
As a hands-on technical expert, the Security Specialist configures and maintains security monitoring tools such as antivirus or intrusion detection solutions. Relies on experience, judgment and innovative thinking to plan and accomplish goals.

Essential Duties and Responsibilities

• Drive information policy and enhancements
• Develop and deliver solutions for managing the risk of enterprise systems, applications and data through policies and controls, risk assessments, issues and exception management, and vendor review
• Aid with IT Security threat modeling, risk assessment and security control enhancement projects in areas such as system hardening, mobile device management, data leakage prevention, antivirus, SaaS application security, and remote access
• Implement and manage solutions for data discovery in support of GDPR and other requirements.
• Ensure the secure integration of SaaS and cloud-based solutions and features including integration with identity providers.
• Utilize tools to monitor and govern SaaS applications, services, systems and data
• Serve as subject matter expert in the research, recommendation, requirements definition, and deployment of new tools in support of business requirements, and conduct control tests of such tools and features
• Collaborate and lead meetings with executive stakeholders, including C-suite, IT operations, system architects, security professionals, and business leads.
• Engage vendor strategists, product development, network architecture, applications and support teams to integrate security principles and policies
• Wrote documentation such as procedures, processes, policies, reports, training materials and user guides
• Collect, coordinate and analyze internal security compliance data. Prepare compliance audit data.
• Maintain security audit schedule and request trackers, collect evidence and support compliance/security audit fieldwork
• Supply data architecture models, capabilities and security information to support data driven solutions
• Conduct proof-of-concepts and process automation in support of business requirements
• Conduct and review vulnerability scans, monitor security alerts, assess risks, and
• Plan and prioritize remediation activities. Drive completion of management responses and mitigation plans, track progress of mitigation activities
• Provide written advisory to various teams related to security architecture and risk management, supply RFQ/RFI response information to clients related to information security policies and architecture.
• Provides individual and group instruction, as needed, on security process, policies and tools
• Assists with preparing and providing necessary project information to support the global IT strategy.
• Provides regular updates to the IT Leads on assigned projects.
• Maintains effective communication with all areas within JAS Forwarding.
• Adheres to all published organizational, safety policies and procedures as described in the JAS Forwarding employee handbook.

Qualifications:

• Bachelors degree in Computer Science or Information Technology
• 5+ years' experience in Cybersecurity
• Strong understanding of Information Security concepts and principles
• Experience with security design reviews, threat modeling, secure code review, risk analysis and penetration testing
• Expert level understanding and configuring Active Directory ADFS, Active Directory DNS/Public DNS, Windows Server OS patches, LAPS, SSL Certificate Services/Public Key Infrastructure
• Significant experience with Microsoft On-Premises and Cloud Technologies
• Experience working with ADFS and AAD implementation of Single Sign On (SSO)
• Significant experience with PowerShell.
• Experience working on Third-Party Risk Management (TPRM) and ISO standards
• Experience with contemporary privacy regulations including GDPR and CCPA
• Strong documentation skills, with a focus on translating technically complex issues into simple, easy to understand concepts
• Sound organizational, and leadership skills; sound business judgment
• Strong communication and interpersonal skills as this role collaborates with IT teams, business units including operations, accounting, human resources and sales, as well as customers and third-party vendors.

JAS Forwarding (USA), Inc. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, ethnicity, disability, religion, national origin, gender, gender identity, gender expression, marital status, sexual orientation, age, protected veteran status, or any other characteristic protected by law.

Where required by state law and/or city ordinance; this employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee's Form I-9 to confirm work authorization.

NOTICE TO APPLICANTS

JAS USA IS A CUSTOMS BROKER, GOVERNED BY FEDERAL REGULATION. FEDERAL REGULATIONS PROVIDE THAT JAS MAY HAVE IT BROKERAGE LICENSE SUSPENDED OR REVOKED IF IT "KNOWINGLY EMPLOYED, OR CONTINUES TO EMPLOY, ANY PERSON WHO HAS BEEN CONVICTED OF A FELONY, WITHOUT WRITTEN APPROVAL OF THAT EMPLOYMENT FROM THE ASSISTANT COMMISSIONER." JAS WILL PERFORM A BACKGROUND CHECK TO DETERMINE IF YOU HAVE BEEN CONVICTED OF A FELONY AND IF SO, ABSENT SPECIAL CIRCUMSTANCES, YOU WILL NOT BE HIRED OR WILL BE TERMINATED IMMEDIATELY.

This job has expired.