InfoSec Engineer

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 6 Month(s)

Skills

Amazon Web Services
Auditing
Collaboration
Communication
Computer Science
Continuous Delivery
Continuous Integration
DevOps
Data Security
Penetration Testing
Nexus
Fortify
Information Security
Software Development Methodology
Python
Regulatory Compliance
Java
Jenkins
User-centered Design
Software Security
Security Awareness

Job Details

We are seeking a highly skilled Application Security Engineer/DevOps Specialist to join our dynamic team. The ideal candidate will have extensive knowledge in AWS, application security, coupled with proficiency in Python programming language.

Responsibilities:

  1. Ensure robust and secure software development lifecycle (SDLC) practices.
  2. Design, implement, and maintain secure applications using Java or Python.
  3. Collaborate with DevOps teams to integrate security into CI/CD pipelines using tools such as Jenkins, UCD, and GitLab.
  4. Leverage AWS services and tools to build secure infrastructure, ensuring data protection and compliance.
  5. Utilize experience with scan tools like Fortify, Nexus, or ZAP to identify and mitigate potential vulnerabilities in software applications.
  6. Conduct regular security audits and penetration testing to ensure the security posture of our applications.
  7. Develop and deliver training programs to enhance the security awareness of developers and other team members.
  8. Communicate complex security concepts effectively to both technical and non-technical stakeholders.
  9. Stay abreast of emerging security threats and trends, recommending appropriate countermeasures.

Qualifications:

  1. Bachelor's degree in Computer Science, Information Technology, or relevant field; advanced degree preferred.
  2. Demonstrated strong application security knowledge with practical experience.
  3. Proficient in either Java or Python, with substantial Python coding experience.
  4. Proven expertise in DevOps practices and experience with tools such as Jenkins, UCD, and GitLab.
  5. In-depth understanding of AWS services and security best practices.
  6. Prior experience using security scanning tools (Fortify, Nexus, ZAP, etc.) to detect vulnerabilities.
  7. Excellent communication skills, with the ability to convey complex concepts clearly to diverse audiences.
  8. Self-starter with the ability to work independently and collaboratively in a fast-paced environment.
  9. Passion for staying current with the latest security trends and technologies.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.