Information Security Specialist Cover Letter

In response to your job posting for information security specialist, I am including this letter and my resume for your review.

Previously, I was responsible for subject matter expertise in the area of Security as it relates to forensic processes, incident management, vulnerability assessment, security configuration of operating and application systems.

My experience is an excellent fit for the list of requirements in this job:

• Experience developing and producing metrics reports for various audiences
• Experience using Tableau or other data visualization tools
• Basic knowledge of database scripting (SQL)
• Experience working with CMDBs or other IT asset management frameworks
• CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor or comparable certifications
• Experience of a commodities trading environment would be helpful for Marketing
• Experience with Remedy and/or ServiceNow service management systems and working in a collaborative service desk environment would be an asset
• Participates on complex, comprehensive or large projects and initiatives

I would like to submit my application for the information security specialist opening. Please accept this letter and the attached resume.

In my previous role, I was responsible for strategic thought leadership, building and regularly updating the bank’s enterprise vision and roadmap related to application security and vulnerability management.

Please consider my experience and qualifications for this position:

• Strong knowledge of applicable practices relating to data security/privacy protection
• Excellent communication skills, have a willingness to take on responsibilities, strong problem-solving skills, and should work well with other staff while providing reliable support
• Knowledge and/or experience with LANs, WAN, VPNs, Routers, firewalls, and IDS/IPS systems
• Understanding of information assurance security requirements, vulnerabilities, protection features
• Understanding of HIPAA security regulations and other government security policies
• Knowledge of information security standards (e.g., ISO 27002, DIACAP, NIST Standards ), rules and regulations related to information security and data confidentiality (e.g., FISMA, HIPAA, ) and desktop, server, application, database, network security principles for risk identification and analysis
• Requires Security Certification (i.e., Certified Information Systems Security Professional (CISSP)
• Able to identify potential risks and propose solutions

I submit this application to express my sincere interest in the information security specialist position.

In the previous role, I was responsible for leadership to projects intended to improve the capabilities of the bank related to application security and vulnerability management.

My experience is an excellent fit for the list of requirements in this job:

• Understanding of privacy rules and best practices as they pertain to the Financial Industry or applicable experience from similar industries (Health Care, Government, )Strong analytical and problem solving skills
• Knowledgeable in network security and application security
• Act as liaison between internal and external Audit and the client, and co-ordinate audits on behalf of TDI, US Cards and Collections TS from planning through to remediation
• Providing a point of coordination for all security related activities, coordinating between Technology Risk Management & Information Security (TRMIS), Risk & Control, Internal/External Audit and TDS Technology Solutions teams
• Track, and follow-up progress of audits, findings and self-identified control gaps and other IT Risk initiatives
• Provide day-to-day support and consulting to CIO and TDI, US Cards and Collections TS on any items related to IT Risk
• Conduct research to identify benchmarks and best practices for the management of IT risk
• Hands on experience on Application Security technologies such as Static code analysis, Dynamic code analysis and penetration testing

I submit this application to express my sincere interest in the information security specialist position.

Previously, I was responsible for security Test and Evaluation (ST&E) maintenance support for the systems using DOD required scanning vulnerability tools and Security Technical Implementation Guide (STIG) reviews.

Please consider my qualifications and experience:

• Work with Service Management function in support of administration and governance of Joiners, Movers and Leaver’s process, Privilege Account Rights Management and Change Control approval
• Produce regular management reports on the status of Information Security metrics
• Understanding of vulnerabilities, exploits, and practical working knowledge of DoD Cyber Security program
• Privileged Access Management (PAM)
• Roles Based Access Control (RBAC)
• Information Security (CISM)
• In-depth understanding of Radiant Logic VDS, Microsoft Active Directory, Redhat LDAP and modern Microsoft operating systems for servers and desktops
• Experience with mobile device forensics (iOS, Android)

I am excited to be applying for the position of information security specialist. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for advice on technical security standards, as well as a suite of security services and tools to address and mitigate security risk.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• An understanding of J2EE, Spring Framework with Spring Security, AngularJS, and Maven in large, distributed enterprise environments, with working knowledge of additional programming languages such as Python, Ruby, or Bash
• An understanding of manually and dynamically reviewing source code in order to identify, verify, and make recommendations for remediation of security weaknesses in code
• A relevant information security certification
• Current certification compliant with DoD 8570 IAM or IAT level 2 or 3
• Identity and Access Management tools e.g Myaccess (Homegrown)
• Basics of Perl, Python and Unix Scripting
• Basics SQL Knowledge
• Certified Splunk Architect or Consultant preferred