The (Sr.) Application Security Analyst position within the Enterprise Information Security department provides experience to the application security and design, vulnerability management, solution and vendor risk assessment areas. This position is responsible for the creation and maintenance of application security and design requirements and assessing that implementation plans meet PJM security policies, standards, and procedures. The focus of the (Sr.) Application Security Analyst is:
•Establishing and maintaining applications security requirements and design specifications and patterns.
•Working with subject matter experts from IT and PJM’s business units on the implementation of cyber security controls (technical and procedural).
•Supporting application security assessments and providing recommendations for mitigating risks
•Supporting the cyber risk assessment process
The (Sr.) Application Security Analyst also ensures that policies and procedures are documented and implemented to ensure compliance with PJM’s security policies and the NERC Critical Infrastructure (CIP) Standards.