Be an early applicantLess than 25 applicants

Company

Original Job Post

Getac · 4 days ago

Security Engineer

Bloomington, MN

Full-time

Onsite

Mid, Senior Level

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Computer Hardware Manufacturing

Insider Connection @Getac

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Develop the best security practices and standards for the R&D organization.

Identify and define GVS product security requirements and work with product development team to include them in our product development life cycle.

Monitor open-source software/SDK updates and push them to development.

Familiar with compliance standards such as CIJS, HIPPA, FedRAMP, ISO 27001.

Generate vulnerability reports for third party vendors to meet compliancy.

Choose and own security testing tools to find any existing or potential security vulnerabilities in GVS product, system, and deployment model.

Ensures threats are properly identified, analyzed, communicated, resolved, investigated, and reported.

Strong web application security & penetration testing experience on web and client/server applications and web services.

Perform vulnerability and penetration tests on all GVS products including software, firmware, and network.

Analyze the results and filter out false positives to allow engineering team to focus on valid issues.

Report issues in GVS defect tracking system with correct issue severity, describing steps to recreate the issue and script information for recreating issue.

Comfort with presenting security concepts or findings to both highly technical and entirely non-technical audiences.

Have an excellent understanding of coding structure and techniques.

Other core expectations will be defined by your direct supervisor/manager.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Computer ScienceInformation SystemsComputer EngineeringSecurity Test StrategyTest PlanTest CasesSecurity Best PracticesCloud EnvironmentSecurity Testing ToolsNetwork Penetration TestApplication Security TestingDevelopment Life CycleSecurity EngineeringSoftware SecurityHardware SecurityNetwork SecurityQuality AssuranceSoftware DevelopmentQuality ControlGUI ApplicationsClient-Server Environment

Required

MS in Computer Science, networking, information systems, computer engineering, or +5 years equivalent experience

+5 years of experiences in designing and managing security test strategy, test plan, and test cases

+5 years of experiences in guiding the organization with best security practice in their network, products, and in Cloud environment

+3 years of experiences in security testing tools for both network penetration test and application security testing

+3 years of experiences in closely working with development group to ensure security practice during the development life cycle

At least two (5) years of experience in security engineering with emphasis in software, hardware, and network security

B.S. in computer science or related field, or equivalent experience

Preferred

Quality Assurance Certificate or equivalent certification

Basic understanding of software project development concepts and quality control methodologies

Familiarity with GUI applications and the client-server environment

Benefits

Health care policy

PTO

401(K) with a 3% Contribution

Performance-based bonuses

Company

Getac

Getac Technology Corporation is a key subsidiary of Getac Holdings Corporation (TWSE:3005), part of the MiTAC-Synnex Business Group with a 2020 annual revenue of US$41.3 billion.

Founded in 1989

Taipei, Taiwan

5,001-10,000 employees