Technical Security Engineer III - FT41538
Position Type
Perm
Industry
IT - All
Number of Positions
1
Start Date
ASAP
Salary
Open
Location
Arlington, VA
United States
Travel Percent
N/A
Job Description
The Sr. Tech Security Engineer will perform security assessments, penetration testing, risk analyses, and design reviews.
Responsibilities:
: Conducts hands-on, technical risk assessments of web applications, systems, and networks with a variety of vulnerability assessment, scanning, and other application security technologies.
: Recommends courses of action to mitigate security vulnerabilities and threats to the consumer products and web services, as well as Corporate applications and environments.
: Manage all security-related testing for portfolio sites and consult with their product and engineering teams on resolving vulnerabilities, security architecture, secure software design and threat modeling.
: Collaborate with peers in Incident Response and Compliance teams. Train and mentor junior team members.
: Support the legal and sourcing teams as a subject matter expert in areas of cloud security, SaaS, and privacy issues.
Requirements:
: Bachelor's degree or equivalent work experience and a proven track record in the field of information security.
: 6-10 years of directly-related experience in a large-scale web services environment.
: Web: Demonstrable web application security skills, including vulnerability assessment, scanning, and security testing.
: Web: Fluent in a variety of web application protocols, software development frameworks, operating systems, and networking technologies.
: Web: Experience with modern web services components including javascript, JSON, AJAX, HTML5, and WebSockets.
: Systems: Demonstrable experience in shell scripting, Python, Perl, or similar tool and automation languages.
: Systems: Significant experience with Linux and expertise in system administration, software engineering, or related technologies.
: Excellent written and verbal communication skills along with the proven ability to present complex, technical information to both technical and non-technical audiences.
: Solid organizational skills and strong customer service skills.
Desired:
: Experience with encryption, PKI, and consumer privacy issues.
: Experience in SaaS/Cloud and mobile environment security.
: Skill with C/C++, Java, Ruby, Python, Perl, and/or PHP.
: Experience with compliance and audit issues (PCI, HIPPA, Sarbanes-Oxley, MRC)
Position Type
Perm
Industry
IT - All
Number of Positions
1
Start Date
ASAP
Salary
Open
Location
Arlington, VA
United States
Travel Percent
N/A
Job Description
The Sr. Tech Security Engineer will perform security assessments, penetration testing, risk analyses, and design reviews.
Responsibilities:
: Conducts hands-on, technical risk assessments of web applications, systems, and networks with a variety of vulnerability assessment, scanning, and other application security technologies.
: Recommends courses of action to mitigate security vulnerabilities and threats to the consumer products and web services, as well as Corporate applications and environments.
: Manage all security-related testing for portfolio sites and consult with their product and engineering teams on resolving vulnerabilities, security architecture, secure software design and threat modeling.
: Collaborate with peers in Incident Response and Compliance teams. Train and mentor junior team members.
: Support the legal and sourcing teams as a subject matter expert in areas of cloud security, SaaS, and privacy issues.
Requirements:
: Bachelor's degree or equivalent work experience and a proven track record in the field of information security.
: 6-10 years of directly-related experience in a large-scale web services environment.
: Web: Demonstrable web application security skills, including vulnerability assessment, scanning, and security testing.
: Web: Fluent in a variety of web application protocols, software development frameworks, operating systems, and networking technologies.
: Web: Experience with modern web services components including javascript, JSON, AJAX, HTML5, and WebSockets.
: Systems: Demonstrable experience in shell scripting, Python, Perl, or similar tool and automation languages.
: Systems: Significant experience with Linux and expertise in system administration, software engineering, or related technologies.
: Excellent written and verbal communication skills along with the proven ability to present complex, technical information to both technical and non-technical audiences.
: Solid organizational skills and strong customer service skills.
Desired:
: Experience with encryption, PKI, and consumer privacy issues.
: Experience in SaaS/Cloud and mobile environment security.
: Skill with C/C++, Java, Ruby, Python, Perl, and/or PHP.
: Experience with compliance and audit issues (PCI, HIPPA, Sarbanes-Oxley, MRC)