Tekwissen
Principal Cybersecurity Engineer/ Jr Cybersecurity Architect
Tekwissen, Bellevue, Washington, us, 98009
Overview:
TekWissen is a global workforce management provider headquartered in Ann Arbor, Michigan that offers strategic talent solutions to our clients world-wide. Our client provider of digital technology and transformation, information technology and services
Position: Principal Cybersecurity Engineer/ Jr Cybersecurity Architect
Location: Bellevue, WA / Overland Park, KS / Frisco, TX / Ravinia, GA / Herndon, VA
Duration: 6 Months
Job Type: Contract
Work Type: Hybrid
Job Description:Client is looking for a candidate who will help ensure that client's software, systems, and infrastructure are designed and implemented to the highest security standards.Performs technical security assessments, code reviews and vulnerability testing to highlight risk and remediate associated findings while helping client teams and partners improve security.Works closely with other client Engineers to design and build proactive methods to enhance our security posture.This position serves as a subject matter expert which drives vision and results to enhance security posture within mobile device, IoT device, enterprise line of business applications, cloud, big data, and core and carrier network technologies as well as and other business units as needed as well as act as a Principal security advisor to cross-functional teams for the successful delivery of projects or services to enterprise customers.Leads information security review of new technologies, designs, and remediation planning efforts.Collaborates with Engineering & Operations Teams to address security vulnerabilities found via PSIRTs, scans or breachesInvestigates and/or leads identifying security needs & recommends plans/resolutions. Implements, tests & monitors info security improvements.Significant experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification,analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect person, asset, data, and brand.Significant experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC,Mobile Application threat model, Cyber Threat Tree, and data flow diagramSubject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management,vulnerability analysis & mitigation, and other topics as assigned.Advanced understanding of IP/Security solutions & technologies applicable to the Wireless Network Architecture.Subject matter expert in all facets of network & information security, including Firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned.Ability to create technical specification and requirements and work independently and with no direction/supervision. Able to quickly adapt to new or evolving technologies related to new product & services requiring validation or research.Strong verbal and communication skills with diverse cross functional groups. Ability to present advanced concepts to leadership, peers, and others in subordinate roles.Understanding load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec),Cloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode)Advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNIWorking knowledge of web application development, RESTful APIs, and skills in Java, frameworks, python, Nodejs.Experience with mobile applications, and handset security.Must Have Skills:
Cyber Security : 10+ YearsJava, frameworks, python, Nodejs : 5+ YearsThreat Modelling like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC : 5+ YearsSSL: 8+ YearsFirewall policy design: 5+ Yearsvulnerability analysis & mitigation: 5+ YearsUnderstanding load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi,MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec): 5+ YearsCloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode): 5+ Years
TekWissen® Group is an equal opportunity employer supporting workforce diversity.
TekWissen is a global workforce management provider headquartered in Ann Arbor, Michigan that offers strategic talent solutions to our clients world-wide. Our client provider of digital technology and transformation, information technology and services
Position: Principal Cybersecurity Engineer/ Jr Cybersecurity Architect
Location: Bellevue, WA / Overland Park, KS / Frisco, TX / Ravinia, GA / Herndon, VA
Duration: 6 Months
Job Type: Contract
Work Type: Hybrid
Job Description:Client is looking for a candidate who will help ensure that client's software, systems, and infrastructure are designed and implemented to the highest security standards.Performs technical security assessments, code reviews and vulnerability testing to highlight risk and remediate associated findings while helping client teams and partners improve security.Works closely with other client Engineers to design and build proactive methods to enhance our security posture.This position serves as a subject matter expert which drives vision and results to enhance security posture within mobile device, IoT device, enterprise line of business applications, cloud, big data, and core and carrier network technologies as well as and other business units as needed as well as act as a Principal security advisor to cross-functional teams for the successful delivery of projects or services to enterprise customers.Leads information security review of new technologies, designs, and remediation planning efforts.Collaborates with Engineering & Operations Teams to address security vulnerabilities found via PSIRTs, scans or breachesInvestigates and/or leads identifying security needs & recommends plans/resolutions. Implements, tests & monitors info security improvements.Significant experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification,analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect person, asset, data, and brand.Significant experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC,Mobile Application threat model, Cyber Threat Tree, and data flow diagramSubject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management,vulnerability analysis & mitigation, and other topics as assigned.Advanced understanding of IP/Security solutions & technologies applicable to the Wireless Network Architecture.Subject matter expert in all facets of network & information security, including Firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned.Ability to create technical specification and requirements and work independently and with no direction/supervision. Able to quickly adapt to new or evolving technologies related to new product & services requiring validation or research.Strong verbal and communication skills with diverse cross functional groups. Ability to present advanced concepts to leadership, peers, and others in subordinate roles.Understanding load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec),Cloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode)Advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNIWorking knowledge of web application development, RESTful APIs, and skills in Java, frameworks, python, Nodejs.Experience with mobile applications, and handset security.Must Have Skills:
Cyber Security : 10+ YearsJava, frameworks, python, Nodejs : 5+ YearsThreat Modelling like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC : 5+ YearsSSL: 8+ YearsFirewall policy design: 5+ Yearsvulnerability analysis & mitigation: 5+ YearsUnderstanding load balancers (ex - A10, F5), firewalls (ex - CheckPoint), Venafi,MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex - CyberArk), SIEM (ex - ArcSight), Log & Event (ex - Splunk), Intrusion IDS/IPS (ex - Symantec): 5+ YearsCloud Platform (ex - PCF, Docker), Scanning (ex - Qualys), AppSec (ex - Veracode): 5+ Years
TekWissen® Group is an equal opportunity employer supporting workforce diversity.