Resumo da vaga

Security Engineer- Remote

Requisitos e responsabilidades

Conteúdo da vaga extraído em seções para revisão mais rápida.

Job Location:

  • Our core work hours are 10am - 4pm Eastern Time with the option to start earlier or work later depending on your time zone. However, please note our client is on the east coast and may sometimes start a meeting earlier than 10:00 which may require your participation.

Job Location:

  • Travel for a conference or to another ICF location for collaboration may be required once a year.

Responsibilities:

  • Perform Static Application Security Testing (SAST) to identify potential vulnerabilities in the application code and infrastructure

Responsibilities:

  • Perform Dynamic Application Security Testing (DAST)

Responsibilities:

  • Create and update threat models for FISMA systems

Responsibilities:

  • Assist and lead security incident response

Responsibilities:

  • Assist with documentation of System Security plan and Contingency Plans for related projects

Responsibilities:

  • Ensure security systems are up to date and create documentation and planning for all security-related information, including incident response and disaster recovery plans

Responsibilities:

  • Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation

Responsibilities:

  • Interact with senior level management, including the ISSO

Responsibilities:

  • Use security assessment tools such as Nessus, Snyk, AWS GuardDuty and AWS Inspector

Responsibilities:

  • Apply a demonstrated understanding of cryptography to secure web applications and data at rest

Responsibilities:

  • Work with development teams to review and correct code written in higher level programming languages and scripts

Responsibilities:

  • Work with DevOps teams to securely harden Linux based machines and cloud infrastructure

Basic Qualifications:

  • Bachelor’s Degree

Basic Qualifications:

  • 5+ years of professional security engineering experience

Basic Qualifications:

  • Candidate must be able to obtain and maintain a Public Trust

Basic Qualifications:

  • Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S.

Basic Qualifications:

  • Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years

Basic Qualifications:

  • Hands on experience that includes:NIST 800‑53 security controlsSystem hardening and implementation of DoD STIGsLeading incident response activitiesData management and applied cryptographyCloud security and infrastructure (AWS, Azure, and/or GCP)Awareness of OWASP Top Ten and CWE Top 25Linux command line usage (e.g., bash, sh, zsh)Scripting in Python, Perl, or similar languages
  • NIST 800‑53 security controls
  • System hardening and implementation of DoD STIGs
  • Leading incident response activities
  • Data management and applied cryptography
  • Cloud security and infrastructure (AWS, Azure, and/or GCP)
  • Awareness of OWASP Top Ten and CWE Top 25
  • Linux command line usage (e.g., bash, sh, zsh)
  • Scripting in Python, Perl, or similar languages

Hands on experience that includes:

  • NIST 800‑53 security controls
  • System hardening and implementation of DoD STIGs
  • Leading incident response activities
  • Data management and applied cryptography
  • Cloud security and infrastructure (AWS, Azure, and/or GCP)
  • Awareness of OWASP Top Ten and CWE Top 25
  • Linux command line usage (e.g., bash, sh, zsh)
  • Scripting in Python, Perl, or similar languages

Basic Qualifications:

  • Prior experience in consulting or healthcare is an advantage but not essential.

Basic Qualifications:

  • Strong engineering background

Basic Qualifications:

  • Application architecture experience

Basic Qualifications:

  • Federal Government contracting work experience

Basic Qualifications:

  • One or more of the following certifications is preferred:OSCP/OSCE/OWSECISSPGPENGXPN Security +CEH
  • OSCP/OSCE/OWSE
  • CISSP
  • GPEN
  • GXPN
  • Security +
  • CEH

Details

  • OSCP/OSCE/OWSE
  • CISSP
  • GPEN
  • GXPN
  • Security +
  • CEH

Professional Skills:

  • Good leadership and team-working skills.

Professional Skills:

  • Highly effective analytical, problem-solving, and decision-making capabilities.

Professional Skills:

  • Excellent communication and interpersonal skills to interface effectively at all levels of the business.

Professional Skills:

  • Organized, detailed oriented and able to prioritize and multi-task.

Professional Skills:

  • Ability to self-organize, prioritize and conduct work on multiple projects under tight deadlines in a fast-paced environment.

Professional Skills:

  • Prior experience working remotely full-time
Vagas similares

Mantenha uma lista reserva.

Ver stack
FocoSecurity EngineeringÁrea da vaga
Sinal de senioridadeSeniorNível do candidato
StackAWS, Azure, GCPSkills principais
Localização1 país aceitoElegibilidade

Stack

Use estas tags para comparar vagas remotas similares.

Elegibilidade de localização

Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.

Seu perfilPaís não definidoEntre para comparar seu país com esta vaga.

Fluxo de contratação

O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.

1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
2Abra a página de aplicação da empresa pelo link rastreado.
3Salve a vaga ou assine oportunidades similares antes de sair.