Security Engineer with OWASP Top 10, CIS Top 20 @ TekNavigators Staffing | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Security Engineer with OWASP Top 10, CIS Top 20 jobs in United States
46 applicants
company-logo

TekNavigators Staffing ยท 19 hours ago

Security Engineer with OWASP Top 10, CIS Top 20

ftfMaximize your interview chances
Computer Software
check
Actively Hiring
Hiring Manager
Jayant Singh
linkedin

Insider Connection @TekNavigators Staffing

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Help implement Secure Software Development Lifecycle (SSDLC) practices and use automation where possible
Work with the product teams to perform security design/code reviews and vulnerability assessment
Provide security guidance to Engineering and Product teams.
Build threat models and participate in risk assessments for new features and services.
Create application threat models and provide guidance on effective countermeasures
Contribute to security architecture and assist in building and rolling out processes for secure code development and deployment involving cutting edge technology
Provide subject matter expertise on encryption, security controls, and secure design and programming practices across the technology organization
Contribute to security policy, standards, and guidelines related to Information Security
Evaluate and operationalize new technologies for securing the organization
Help create product security inventory and product security lifecycle to align with standards.
Train and mentor new hire and Jr Product Security Architects.
Train and mentor Security Champions throughout the development
Share thought leadership in the product and application security space
Create security user stories and security test cases for products that are tailored to the product attributes and technology
Support and advise product owner and product development teams by ensuring technical and architectural feasibility, readiness and compliance.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Secure Software Development LifecycleCloud SecurityApplication SecurityPenetration TestingMobile SecuritySecurity Requirements AnalysisThreat ModelingSecurity TestingOWASP Top 10Authentication ProtocolsSecurity ControlsDockerKubernetesCI/CD PipelineCISSPCISMSANSCCSKCCSPEthical Hacker Certification

Required

Bachelor's degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience
Experience with performing security requirements analysis to secure the deployment of large globally distributed platforms, building threat models, do design reviews and document relevant mitigation techniques, implementing security best practices, applying applications security design patterns.
Experience with any combination of at least 3 technical disciplines, including the following: Cloud Security, Penetration Testing, Application Security, Mobile Security, Secure Development methodologies, Software Development and Coding.

Preferred

Good understanding of mobile application security
Experience with hands on application penetration testing
Experience securing cloud services, like AWS, Azure or GCP
Understanding of Docker, Kubernetes and CI/CD pipeline
Hands on experience on security testing like SAST, DAST and Pen testing
Understanding of OWASP Top 10, CIS Top 20
Understanding of authentication protocols like OID, OAuth2.0, SAML
Knowledge of application security vulnerabilities, secure coding, and countermeasures.
Written and verbal skills for communicating security concepts and solutions.
Ability to prioritize between and execute on multiple work streams.
Experience with application programming and the overall software development life cycle.
Excellent organizational and interpersonal skills.
One of more of the following certifications: CISSP, CISM, SANS, CCSK, CCSP, Ethical Hacker cert.

Company

TekNavigators Staffing

twitter
company-logo
TekNavigators Staffing, is a full-lifecycle Staffing and Development services leader that combines chip-to-cloud software engineering expertise.

Funding

Current Stage
Growth Stage
Company data provided by crunchbase
logo

Orion

Your AI Copilot