Lead Security Analyst
Cybersecurity at Providence is responsible for appropriately protecting all information relating to its caregivers and affiliates, as well as protecting its confidential business information (including information relating to its caregivers, affiliates, and patients)
What will you be responsible for?
- Responsible for driving software security and code security practices that meets Providence software security policies to ensure Providence developed application code is secure and code vulnerabilities are remediated.
- Driving code security reviews and false positive analysis and shares best practices across the team.
- Identify scope for implementing security best practices and implement process workflows that strengthen the overall security posture.
- Participate in all aspects of agile software development, including design, implementation, and deployment to include code security aspects wherever needed in the application building phase.
- Troubleshoot, debug, and optimize security code remediation methods and stay ahead of with industry trends and emerging technologies related to secure code practices.
What would your work week look like?
- Collaborate with cross-functional developer teams and engage in code scanning activities within Providence code repositories (ADO and GitHub)
- Propagate and educate developer teams about secure coding practices and assist in remediating code vulnerabilities identified in the scan.
- Identify and implement secure coding practices that aligns with industry standard frameworks such as NIST, CIS and Providence information security policies etc.
- Set-up regular meeting with stakeholders to show progress of software security scans and code vulnerabilities trends.
- Clearly communicate roadmap, backlog, and team updates across the organization.