Job reference #6170_8573233

Security Engineer

 

We are looking for an experienced Security Engineer with a strong background in application security. Your responsibilities will include analyzing, reviewing, and developing secure applications, contributing to secure architecture designs, and recommending security measures and best practices to support a robust cloud platform.

 

Responsibilities

• Drive awareness and education around secure coding practices
• Perform security code reviews including secure library assessment
• Audit and tune threat models
• Write tests to ensure secure properties of an applications
• Design, develop, and validate remediations for security issues
• Lead security tooling adoption
• Design and develop secure applications including cryptography, authentication, identity management, secret storage, and PKI

 

Minimum Qualifications

• Experience with OWASP top ten and familiarity with CVEs
• Experience building threat models
• Experience with security scanning tools like: Nessus, Qualys, Metasploit
• Experience with Intrusion Detection and Intrusion Prevention tools like: Snort, StackRox, CrowdStrike, Aporeto, Neuvector
• Experience with microservices and cloud environments
• Knowledge of data structures, algorithms, run-time optimization
• Knowledge of OOP principles, knowledge of various languages such as NodeJS, Java C++, Python
• Degree in Computer Science or related field (or in lieu of degree, 4 years of relevant work experience)

 

Preferred Qualifications

• In depth and proven experience identifying and remediating security vulnerabilities
• Experience with Docker or Rocket, Kubernetes or Swarm, and containers
• Experience with penetration testing
• Experience with Test Driven Development (TDD)
• Experience with React and Node.JS
• Experience with database security
• Knowledge of Continuous Integration & Delivery methodologies
• Knowledge of agile development methodology