Cyber Security Engineer

Overview

On Site
90/hr - 120/hr
Full Time

Skills

Web application security
Mobile device management
Cyber security
Software security
IaaS
Threat modeling
Development testing
Active Directory
Cloud security
Network security
Remote access
Research design
Information security
SAML
OAuth
OIDC
Authentication
Leadership
Data
Design
Articulate
Software development methodology
Agile
Writing
OWASP
API
Continuous integration
Continuous delivery
Microsoft Azure
Authorization
Docker
Kubernetes
Management
Master data management
Cryptography

Job Details

Title:
  • Cyber Security Engineer
  • 12 month contract

Remote, Hybrid, or in office?
  • 100% Remote

Must Haves:
  • Must have strong knowledge of IAM controls including SAML and OAUTH/OIDC authentication.
  • Must have elements of all three of the following in Architecture, Application Security, and Cloud Infrastructure Security.
  • Required architectural skills:
    • Taking the lead on gathering the required data to produce the deliverables, communicating requirements to non-technical stakeholders, threat modeling, and defend design decisions with real life scenarios, and articulate the risk and findings in business language.
  • Required Application Security skills:
    • Must have strong Design Experience -
    • Secure Code Development
    • Secure SDLC (agile development, testing, and writing security stories)
    • Web Application Security / knowing OWASP top 10
    • Experience setting up SAST and DAST
    • API Security
    • Securing CI/CD pipeline
  • Required Cloud Infrastructure Security skills:
    • Azure
    • Active Directory
    • Shared responsibilities model
    • Cloud security including secure boundaries, authentication and authorization, and the services themselves.
    • Container security (like Docker and Kubernetes) including the security lifecycle and image scanning.
    • Must have strong knowledge of network security protocols, best practices and perimeter security tools.

Nice to have:
  • Understanding of common solutions for event logging, remote access, endpoint management, and mobile device management (MDM).
  • Understanding of common data loss protection solutions such as cryptography, tokenization, and hashing.

Projects:
  • On this team you will be responsible for Application Security and Infrastructure Security.
  • You will be creating and updating a view on IT assets, related attack surfaces, and threat actors. You will research, design, and implement new enterprise technologies (such as authentication and authorization). You will also be the company's SME for Security including helping other teams with projects and assessing business risks based on emerging threats.
  • This role will require you to resolve complex enterprise-scale information security problems.

About Motion Recruitment Partners, LLC