Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Security Engineer

Expired Job

Zeektek Sacramento , CA 95833

Posted 5 months ago

The Security Engineer helps design, build, deploy, and maintain secure systems. The Security Engineer develops security protocols for Information Systems and projects while troubleshooting any technical problems that may arise, to include detection and prevention of information security threats to the organizations Information Systems. The Security Engineer supports both tactical and strategic relationships within the Information Services Department, technology and contracting vendors, suppliers, and internal and external business clients.

Representative Duties:

Lead security architecture/design analysis and reviews of web, mobile, and desktop applications with development teams and other stakeholders throughout the company.

Identify and complete targeted exploit testing through white-box testing to identify system flaws and vulnerabilities which may include developing scripts or other tools as required.

Collaborate with scrum teams as it relates to threat modeling, design review, secure coding practices, static and dynamic analysis, web application scanning, etc.

Collaborate with colleagues on authentication, authorization, and encryption solutions.

Maintain data and monitor security access to Information Systems.

Evaluate new technologies and processes that enhance security capabilities and test security solutions using industry standard analysis criteria.

When appropriate, suggest new methods to solve existing production security issues.

Perform vulnerability testing, risk analyses and security assessments on the organizations current security measures.

Plan, implement, and upgrade security measures and controls when necessary.

Anticipate security alerts, incidents and disasters in an effort to reduce the likelihood of such event(s).

Manage network, intrusion detection and prevention system by conducting internal/external security audits.

Investigate intrusion incidents, conduct forensic investigations and mount incident responses.

Analyze security breaches to determine their root cause and recommend and install appropriate tools and countermeasures when approved.

Define, implement, and maintain corporate security policies and train employees on security awareness.

Participate in changes in software, hardware, facilities, telecommunications and user needs when appropriate.

Perform other duties and special projects as assigned.

Qualifications:

Bachelors Degree in Information Security, Computer Science, or Information Technology.
5 years experience working in various aspects of application security, such as security architecture analysis and design reviews, threat modeling, or web application vulnerabilities assessment, API, WAF, etc.

Information Security Certifications such as GWAPT/GSEC/GCIH/GCIA, CEH, ECSA, or CISSP strongly desired.

Must have strong working knowledge of container security, authentication systems, CI/CD workflows, and Event Management and monitoring (SIEM).

Must have hands on experience building Application Security programs from scratch using Open Source tools and resources such as OWASP.

Must have hands on scripting skills using Python or any other scripting language to automate tasks.

Must have demonstrated knowledge of secure coding practices.

Experience working on single page applications and ColdFusion is a plus.

Experience in a DevSecOps environment is a plus.

Experience in an agile environment is a plus.

Previous experience working in the health care industry; preferably HMO, is a plus.

Proficient computer skills, including electronic mail, routine database activity, word processing, spreadsheet, graphics, etc.

Must be able to speak, read, write, and understand the primary language(s) used in the workplace.

Skills:
Application Security, SIEM, authentication
Contract


upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
IT Security Engineer

Intueor

Posted 1 week ago

VIEW JOBS 1/9/2019 12:00:00 AM 2019-04-09T00:00 <p>We are looking for IT Perimeter Security Architect who can perform Configuration and Administrative activities related to the following tasks: </p><ul> <li>Perimeter and Endpoint Security</li> <li>Architect and Engineer </li> <li>Road Map and Presentations </li> <li>Deployment, Security Controls, Monitoring, Logging, Reporting, Operational Support and Organizational Change Management</li> </ul><p><strong>Requirements</strong></p><p>Must have following Skills-</p><ul> <li> You will be expected to integrate security to comply with required policies and standards such as NIST, FedRamp, HIPPA, IRS-1075, SIMM and specific controls and configuration settings into client's environments</li> <li>6 years’ experience in a lead capacity, in designing and developing a perimeter and endpoint security infrastructure and developing procedures defining their use to meet business requirements.</li> <li>4 years’ combined experience integrating border Router/ Switches, Layer 3/Application/MicroSegmentation Firewall Policy/Administration, Load Balancer, Cloud Security for IaaS/PaaS/SaaS, DoS, Log/Monitoring correlation and/or Data Packet Inspection.<br> </li> <li>3 years’ combined experience related to Hypervisor, DNS, Identity/RBAC and Directory Services, MFA, IDS/IPS, Virtual Private Network, DMZ, Encryption (At Rest/In Transit), Application Stacks/Service Connectors, Storage Architecture/Networks and/or Computer/User Least Privilege.</li> <li>3+ years’ combined experience in designing and integrating device vulnerability scanning, securing systems, software, certificate authority, two-factor authentication, patching, Security Information and/or Event Management. </li> <li>3+ years’ combined experience related to email hybrid integration and operational support of cloud Cisco e-mail Security services including hygiene\SPAM, Antivirus, Malware, Encryption, Data Loss Prevention and premise based SMTP relays, VMWare AirWatch Mobile Device Management/ Workspace 1 and/or Active Directory (AD) authentication utilizing AD Federation Services. </li> <li>Possess SANS certifications, which may include Advanced Security Essentials, Enterprise Defender Certificate or other applicable SANS certification. </li> <li>3 years’ demonstrated experience in Malware/endpoint protection for incident response using McAfee and FireEye.</li> <li>3 years’ experience utilizing Palo Alto web filtering and developing automated reporting procedures for its use.<br> </li> </ul> Intueor Sacramento CA

Security Engineer

Expired Job

Zeektek