TekNavigators Staffing ยท 19 hours ago
Security Engineer with OWASP Top 10, CIS Top 20
Maximize your interview chances
Insider Connection @TekNavigators Staffing
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Help implement Secure Software Development Lifecycle (SSDLC) practices and use automation where possible
Work with the product teams to perform security design/code reviews and vulnerability assessment
Provide security guidance to Engineering and Product teams.
Build threat models and participate in risk assessments for new features and services.
Create application threat models and provide guidance on effective countermeasures
Contribute to security architecture and assist in building and rolling out processes for secure code development and deployment involving cutting edge technology
Provide subject matter expertise on encryption, security controls, and secure design and programming practices across the technology organization
Contribute to security policy, standards, and guidelines related to Information Security
Evaluate and operationalize new technologies for securing the organization
Help create product security inventory and product security lifecycle to align with standards.
Train and mentor new hire and Jr Product Security Architects.
Train and mentor Security Champions throughout the development
Share thought leadership in the product and application security space
Create security user stories and security test cases for products that are tailored to the product attributes and technology
Support and advise product owner and product development teams by ensuring technical and architectural feasibility, readiness and compliance.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor's degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience
Experience with performing security requirements analysis to secure the deployment of large globally distributed platforms, building threat models, do design reviews and document relevant mitigation techniques, implementing security best practices, applying applications security design patterns.
Experience with any combination of at least 3 technical disciplines, including the following: Cloud Security, Penetration Testing, Application Security, Mobile Security, Secure Development methodologies, Software Development and Coding.
Preferred
Good understanding of mobile application security
Experience with hands on application penetration testing
Experience securing cloud services, like AWS, Azure or GCP
Understanding of Docker, Kubernetes and CI/CD pipeline
Hands on experience on security testing like SAST, DAST and Pen testing
Understanding of OWASP Top 10, CIS Top 20
Understanding of authentication protocols like OID, OAuth2.0, SAML
Knowledge of application security vulnerabilities, secure coding, and countermeasures.
Written and verbal skills for communicating security concepts and solutions.
Ability to prioritize between and execute on multiple work streams.
Experience with application programming and the overall software development life cycle.
Excellent organizational and interpersonal skills.
One of more of the following certifications: CISSP, CISM, SANS, CCSK, CCSP, Ethical Hacker cert.
Company
TekNavigators Staffing
TekNavigators Staffing, is a full-lifecycle Staffing and Development services leader that combines chip-to-cloud software engineering expertise.
Funding
Current Stage
Growth StageCompany data provided by crunchbase