Security Automation Architect

Overview

On Site
Depends on Experience
Contract - W2
Contract - 12 Month(s)

Skills

AWS
CICD
CISM
CISSP
CSA
Checkmarx
Aquasec

Job Details

  • A security liaison between Enterprise Technology (development and operations) and Information Security
  • Design and development of security solutions using the approved automation, CI/CD tooling and standards security solutions
  • Perform code analysis, application security reviews, and ensure development team understands the application security policies
  • Experience in Automated patching of build scripts to included updated package references
  • Recognize areas for security improvements within the application and cloud platform related to automation and CI/CD, access controls, network, automated compliance, alerting, forensics, etc.
  • Train DevOps teams in consuming security and security standards as offered by the client.
  • Define and support secure continuous delivery approaches, including tooling and automated testing and support teams with threat modelling.
  • Managing the development, refresh and implementation of security policies, standards, guidelines and procedures
  • Influence project teams and other stakeholders on security controls / due diligence
  • Understanding of the OWASP Top 10 application security risks and how to address them.
  • Knowledge of information security standards, principles and practices required
  • Well versed with tools used in Security testing industry such as, Nmap, WAF, WebSecurity etc.,
  • General knowledge of security concepts such as access controls, identity management, data classification and loss prevention
  • Experience with Vulnerability Scanning solutions
  • Experience in container security solutions
  • Experience with any of the following tools:
    • Veracode, Checkmarx, OWASP ZAP, Twist lock, Aquasec, Sonar, Fortinet etc.,
  • Preferably with any of the following certifications:
    • CISM, CISSP, CSA, CEH, SSCP etc.,

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.