Overview
On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 12 Month(s)
No Travel Required
Skills
Cyber Security
Application Security
Java
frameworks
python
Nodejs
Threat Modelling
SSL
Firewall policy
load balancers
Malware Protection
Job Details
Role: Principal Cybersecurity Engineer (Jr. Architect)
Location: Bellevue, WA/Overland Park, KS/Frisco, TX/Ravina, GA - Onsite
Location: Bellevue, WA/Overland Park, KS/Frisco, TX/Ravina, GA - Onsite
Exp: 13
Must Have Skills:
Cyber Security : 10+ Years
Application Security:8+ Years
Java, frameworks, python, Nodejs : 5+ Years
Threat Modelling like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC : 5+ Years
SSL: 8+ Years
Firewall policy design: 5+ Years
vulnerability analysis & mitigation: 5+ Years
Understanding load balancers (ex A10, F5), firewalls (ex CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex CyberArk), SIEM (ex ArcSight), Log & Event (ex Splunk), Intrusion IDS/IPS (ex Symantec): 5+ Years
Cloud Platform (ex PCF, Docker), Scanning (ex Qualys), AppSec (ex - Veracode): 5+ Years
Responsibilities:
Leads information security review of new technologies, designs, and remediation planning efforts.
Collaborates with Engineering & Operations Teams to address security vulnerabilities found via PSIRTs, scans or breaches
Investigates and/or leads identifying security needs & recommends plans/resolutions. Implements, tests & monitors info security improvements.
Significant experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification, analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect a person, asset, data, and brand.
Significant experience with implementation of various threat modelling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC,
Mobile Application threat model, Cyber Threat Tree, and data flow diagram
Subject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management,
vulnerability analysis & mitigation, and other topics as assigned.
Leads information security review of new technologies, designs, and remediation planning efforts.
Collaborates with Engineering & Operations Teams to address security vulnerabilities found via PSIRTs, scans or breaches
Investigates and/or leads identifying security needs & recommends plans/resolutions. Implements, tests & monitors info security improvements.
Significant experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification, analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect a person, asset, data, and brand.
Significant experience with implementation of various threat modelling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC,
Mobile Application threat model, Cyber Threat Tree, and data flow diagram
Subject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management,
vulnerability analysis & mitigation, and other topics as assigned.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.