Staff Security Cover Letter

I submit this application to express my sincere interest in the staff security position.

Previously, I was responsible for remediation support for Static Application Security Testing (SAST) assessments against .NET, Java, Android, and iOS applications.

My experience is an excellent fit for the list of requirements in this job:

• Knowledge of incident response, host and network forensic technologies
• Working knowledge of Microsoft, Linux & OSX operating systems
• Networking knowledge (technologies, ports and protocols)
• Proficient with cloud environments and technologies
• Familiar with cybersecurity solution offerings used to meet business and technical objectives
• Experience with Active Directory/LDAP and other authentication technologies
• Firewall & router security
• Network & infrastructure security practices

I would like to submit my application for the staff security opening. Please accept this letter and the attached resume.

In the previous role, I was responsible for security training and advice to engineering teams on all aspects of security, working with them to review security fixes.

Please consider my experience and qualifications for this position:

• GICSP, CISSP, CEH or equivalent certification preferred
• Experience in supporting security response
• Experience in Healthcare industry or other heavily regulated industry DOD, DOE, NSA
• Experience developing and rolling out secure application development classes
• Experience with Android and iOS security and testing background
• Knowledge of conducting physical security penetration testing in small independent teams
• Advanced Penetration testing focused certifications preferred (OSCE, GXPN, GWAPT, eWPTX, ECPTX)
• Strong combined experience in Information Technology, Information Security, Security operations, Cyber Intelligence, or Data Science

I am excited to be applying for the position of staff security. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for leadership with direction and execution of an IAM roadmap that meets requirements including, but not limited to, security for hybrid cloud deployment, B2B web services, mobile computing, fine grained access control, policy driven security, Identity Governance, Access Management, and Privileged access management, user provisioning/de-provisioning, and federation focusing on multiple protocols, such as Java or BeanShell coding.

Please consider my qualifications and experience:

• Experience with common UNIX command-line operations and bash
• Knowledge of the OWASP Top 10
• Experience with SIMS Database
• Monitors for emerging threat patterns andvulnerabilities
• Analyzes penetration test results and engagewith technology partners and business units in order to resolve identifiedvulnerabilities
• Recommends approaches for addressingvulnerabilities including system patching, deployment of specialized controls,code or infrastructure changes, and changes in development processes
• Promotes collaboration with stakeholders to prioritize the remediation of vulnerabilities and close potential attack vectors
• Possesses impeccable personal and professionalintegrity

In response to your job posting for staff security, I am including this letter and my resume for your review.

Previously, I was responsible for remediation support for Static Application Security Testing (SAST) and secure code analysis assessments against .NET, Java, Android, and iOS applications.

Please consider my qualifications and experience:

• Experience in a mature development environment (defined development practices, code control, requirements documentation, testing, release management)
• Basic knowledge of Identity and Access industry standards and audit requirements
• Basic knowledge of Identity and Access Management methodologies and technologies
• Experience with updating and maintaining connectors for Identity systems
• Understand and implement practices, capabilities and features to support security compliance
• Identifies parameters, structure, and critical test components
• Leads analysis of intelligence data as it pertains to the security of the corporate enterprise environment Uses the Threat Assessment Model for the Abbott’s Computer Threat Action Center (CTAC) as a ‘living process’ capable of necessary evolution in different security postures and environments
• Provides technical, proactive threat assessments of Abbott systems and networks understood to be at risk Monitors and reports on trending or emerging cyber threats applicable to Abbott systems and networks

Please consider me for the staff security opportunity. I am including my resume that lists my qualifications and experience.

In my previous role, I was responsible for oversight and effective challenge of first line activities in the areas of: threat management and monitoring, security incident response framework and process, identification of threats to the Firm’s environment, timely notification of affected stakeholder and management, ongoing monitoring of threats, and remediation efforts and the execution of compensating controls.

My experience is an excellent fit for the list of requirements in this job:

• Strong knowledge of deep design review and Secure Development Lifecycle methodologies, Agile based methodologies, middleware platforms, development platforms (Java, C, C++, .NET )
• An individual with experience of working on large scale cloud based services (including SaaS, PaaS, IaaS) and very understanding of security challenges involve in deploying Cloud Applications
• Experienced hands on SW development in C/Objective-C/C++/Swift/Java
• Administer additions, deletions and adjustments of system objects and user ID resources
• Process LAN file access requests, two factor authentication token requests and maintains token databases
• Process password resets
• Provide support for a Security helpdesk
• Support a rotation of 24x7 on call with the Security team