Associate - Identity and Access Management
About The Position
RSM is a leading global provider of professional services to the middle market, focused on instilling confidence and empowering clients and people to reach their full potential. The company fosters an inclusive culture and talent experience, inspiring and empowering individuals to thrive both personally and professionally. This Associate role involves conducting comprehensive security assessments, performing manual penetration testing on various systems, and collaborating with clients across diverse technology stacks, including cloud platforms. The position requires developing and interpreting security standards, advocating for best practices like secure development and cloud security, and assisting in remediation efforts. Key aspects include effectively communicating findings to management and clients, identifying improvement opportunities, staying current with security trends, and fostering a collaborative team environment.
Requirements
- BS in Computer Science, Engineering, or related field or equivalent work experience
- Years of experience in code review, application security testing, or web application development
- Strong written and verbal communication skills
- Proficient in scripting languages (e.g., Python, Ruby, Perl)
- Experience with cloud platforms, such as AWS, and knowledge of cloud security best practices
- Knowledge of Docker, CDK, Terraform, Java, Python, React, GraphQL, Javascript, JSON, REST, etc.
- Possesses a technical background in application development, networking/system administration, security testing, or related disciplines
- Experience with static application security testing (SAST) and dynamic application security testing (DAST) using a variety of tools and techniques
Nice To Haves
- One or more relevant certifications such as Offensive Security Web Assessor (OSWA), Offensive Security Web Expert (OSWE), Offensive Security Certified Professional (OSCP), Burp Suite Certified Practitioner, or AWS Certified Security Specialist
Responsibilities
- Conduct comprehensive security assessments, incorporating both static and dynamic application security testing methods
- Perform manual penetration testing on web applications, network devices, and other systems
- Collaborate with clients in a dynamic environment across various technology stacks and services, including cloud platforms and development technologies
- Develop, refine, and interpret security standards and guidance
- Demonstrate and advocate for security best practices, including secure development and cloud security
- Assist in developing remediation recommendations for identified findings
- Effectively identify and communicate findings, both in writing and verbally, to senior management and clients
- Assist in identifying improvement opportunities for assigned clients
- Stay informed about current security trends, technologies, and best practices
- Foster a collaborative environment by encouraging open communication and cooperation among team members to achieve shared goals and successful outcomes
- Assist in coordinating and supporting other team members working on assigned projects
Benefits
- Competitive benefits and compensation package
- Flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
