IT Security Engineer

Responsibilities

- Lead data classification and categorization in line with state standards.
- Perform SAST/DAST using tools like Mend and Invicti; provide remediation guidance.
- Develop security remediation plans and present them to technical and business teams.
- Document application security risks and create user stories for remediation.
- Collaborate with developers to address security issues in code and infrastructure.
- Integrate applications with Microsoft Sentinel and support IAM implementation.

Must-Have Qualifications

- 10+ years as a Security Engineer working with enterprise-grade apps.
- Experience with data classification, identity/access management, risk analysis.
- Strong hands-on with security scanning tools (SAST/DAST).
- Deep understanding of common app vulnerabilities (e.g., PII exposure, reused creds).
- Excellent documentation and communication skills.

Desirable
- Master s in Computer Science
- CISSP certification
- Experience using Mend, Invicta, or similar tools