Overview
On Site
$55+
Contract - Independent
Contract - W2
Contract - 12 Month(s)
No Travel Required
Skills
CodeQL
rapid7
application security
penetration testing
sast
dast
sca
cloud
cloud security
web
web apps
Cloud Computing
Collaboration
Communication
Computer Science
Cyber Security
Data Analysis
Decision-making
Defect Management
Job Details
Education & Experience Required:
Minimum of 5+ years in leading Security Application.
Bachelor s degree (or equivalent) in Computer Science, Software Engineering, Cybersecurity, Electrical Engineering, or a related discipline.
Preferred Certification:
Professional certifications in either cybersecurity or software engineering.
Required Technical Skills and Qualifications:
5+ years of experience as a Security software engineer (in any language or framework) or software engineering manager
5+ years of experience as a software development-focused cybersecurity professional
5+ years of experience working on a major cloud platform (AWS, Azure, Google Cloud Platform, or Salesforce) as a software engineer, cloud/DevOps engineer, security engineer, or architect
Experience analyzing and remediating security findings from automated and manual sources such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), penetration testing, and Software Composition
Analysis (SCA), etc
Proficiency in one or more programming languages
Background in problem identification, root cause analysis, and process improvement
Excellent writing abilities and experience writing technical analyses and reports for consumption by software engineers, architects, and managers
Experience as a software or security engineer as a Fortune 500 company employee or contractor
Experience as a software or security engineer in e-commerce, device telematics, data analytics, or mobile applications
Cyber Security Engineers Job Responsibilities:
Analyzing, validating, communicating, and consulting on security defects identified by automated and manual sources such as CodeQL, Rapid7 Web Application Security, penetration testing, bug bounty, etc
In other words, our security engineers are partners to software engineers who require accurate information on why a vulnerability exists and what they can do about it
Enabling and monitoring automated defect detection tooling (CodeQL, Rapid7, etc.) at the repository or application level according to established processes
Collecting and communicating required scope and access information for penetration testing and security assurance assessments, as well as handling the output of these assessments via our Defect Management Process
Consulting with software engineers on practices that will improve their application s security maturity according to scorecards and maturity models established by Cat Digital
Authoring, in close partnership with software engineers, correction of error reports that help engineers and architects across Cat Digital avoid similar mistakes in their applications
Required Soft Skills:
Decision-making ability
Strong Communication
Active Participation
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.