background_image
  • IMAGE: Return to Main
  • IMAGE: Show All Jobs


Position Details: Sr. Security Automation Engineer-926609TH

Location: Hillsboro, OR
Openings: 2
Job Number:

Share

Description:

As a Security Automation Engineer your role on the Corporate Information Security (CIS) Attack Surface Management team will be focused on the automation and integration of security vulnerability assessment tools to acquire vulnerability data, misconfigurations or code flaws which put Client data at risk. Sources of data will be from numerous enterprise and open source security assessment utilities. Your efforts will focus upon integration and automation of security toolsets into secure development pipelines, automation and sharing of data between security toolsets, and interactions with development teams with a focus on improving overall application security. Ours is a fast-paced, multi-faceted and passionate team which handles wide ranges of issues at Client.

Job Requirements

  1. Agile development & maintenance of automation script/tools to scale the attack surface management’s work across the organization
  2. Develop custom platform integrations, data correlation and processing strategies to reduce false positives and align data against Client remediation policies
  3. Be the Subject Matter Expert (SME) for deployment & management of integrations of various security vulnerability assessment tools
  4. Assist developer community to effectively utilize the tools and remediate findings identified
  5. Assist with maintaining various pipeline integration of security tools into development SDLCs
  6. Effectively communicate complex technical issues simply to different audiences
  7. Ability to quickly learn new Information Security concepts and adapt to a fast-paced, ever changing organization
  8. Working cross functionally with multiple teams on establishing new processes and improving existing security across the platform

What We're Looking For:

To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has in-depth experience and clearly demonstrates these skills:

  1. BS or MS degree preferred in computer science, information assurance or equivalent experience
  2. Expertise in interpreted languages (Python, Javascript) and compiled languages (Java, .Net) with full-stack development experience.
  3. Software development background and strong knowledge of software development lifecycles
  4. Previous experience deploying and maintaining systems, services, containers and applications in AWS, Azure and/or GCP
  5. Hands on experience with security toolsets such as Static Code Analysis (Fortify, Veracode), network Dynamic Web application Scanners (WebInspect, AppSpider, Whitehat, Veracode), vulnerability scanners (Nessus, Nexpose, Qualys), and component lifecycle management tools (Sonotype, Blackduck) is preferred
  6. Experience in Application Security, Applied Cryptographic Protocols and administering web-based applications and servers
  7. Ability to develop and communicate recommendations to management
  8. Strong problem-solving and conceptual thinking abilities

Required

  • CRYPTOGRAPHIC
  • GCP
  • INFORMATION SECURITY
  • MAINTENANCE
  • NESSUS

Additional

  • NEXPOSE
  • PROBLEM-SOLVING
  • QUALYS
  • REMEDIATION
  • SECURITY
  • SOFTWARE DEVELOPMENT
  • WEB-BASED
  • .NET
  • DEPLOYMENT
  • ENGINEER
  • INFORMATION ASSURANCE
  • INTEGRATION
  • INTEGRATOR
  • JAVA
  • JAVASCRIPT
  • OPEN SOURCE
  • PYTHON
  • SECURITY VULNERABILITY
  • SME
  • STRUCTURED SOFTWARE
  • SUBJECT MATTER EXPERT
  • VULNERABILITY ASSESSMENT
  • WEB BASED

 

Perform an action:

IMAGE: Apply to Position
mautic is open source marketing automation




Powered by: CATS - Applicant Tracking System