Overview
Remote
Depends on Experience
Contract - Independent
Contract - W2
Contract - 6 Month(s)
Skills
Data Security
Information Security
insurance
. NET
DevSecOps
OWASP
Job Details
Senior Information Security Engineer (T2P)
What we need
- 12+ years of relevant experience
- Strong understanding of Cryptography, Authentication, Authorization, Secrets Management, Data Security, Web Technologies, and Cloud Security
- Hands-on experience with security testing tools (Burp Suite, OWASP, ZAP, etc.)
- Experience with secure coding practices and security frameworks (OWASP, NIST, CIS etc.)
- Experience building, supporting, and securing cloud-based web infrastructure with AWS and/or Azure
- Understanding of and ability to deal with and prevent security threats and risks
- Working knowledge of Software Engineering and Deployments (CI/CD pipelines, SCM)
- Deep understanding of web application infrastructure (.NET, JavaScript, etc.)
- Experience in DevSecOps with tech stack knowledge (Git, Docker, Windows, Linux, Datadog, SIEM, AWS Security products, Lambda, PowerShell, Terraform)
What you bring to the table
- Proactive and positive approach to solving problems and correcting issues
- Stays current with industry standards, best practices and security technologies
- Loves to learn and takes every opportunity you re given to develop knowledge and skills
- Brings your best each day willing to make an impact, with an excitement to wear multiple hats as part of a lean security team
- You are passionate about making incremental improvements
- A strong team player that enjoys working in a collaborative, team environment
- Brings a professional approach to situations, treating others with respect and understanding
Wish list
- Continued education and/or advanced degree(s)
- Experience in environments subject to HITRUST, HIPAA and/or PCI regulations
- Experience in software-as-a-service, actuarial science, and/or insurance underwriting indust