Chabez Tech
Principal Cybersecurity Engineer : Telecom Domain Preferred : Bellevue, WA | Ove
Chabez Tech, Frisco, Texas, United States,
Job Description
Title: Principal Cybersecurity Engineer
Locations: 3 Days On-site for below locations(Bellevue, WA | Overland Park, KS | Frisco, TX | Ravinia, GA | Herndon, VA)
Domain: Telecom domain Preferred
Principal Cybersecurity Engineer / Cybersecurity Architect to join our cybersecurity team.
The ideal candidate will ensure that software, systems, and infrastructure are designed and implemented with the highest security standards.
This role will involve conducting technical security assessments, code reviews, vulnerability testing, and threat modeling to identify risks and recommend remediation solutions.
As a subject matter expert (SME), you will lead cross-functional teams, collaborate with engineers, and serve as a security advisor for various enterprise projects, focusing on
mobile devices, IoT, cloud infrastructure, big data, and core network technologies.
Key Responsibilities:
Lead Security Reviews: Perform comprehensive security assessments of new technologies, designs, and processes.
Collaborate on Vulnerability Management: Work with engineering and operations teams to address vulnerabilities identified via scans, PSIRTs, and breach reports.
Design Threat Models: Implement and enhance threat modeling approaches such as STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, and CAPEC to depict trust boundaries, threat agents, and safeguards.
Develop Security Specifications: Create technical specifications and security requirements for projects and deliverables.
Advanced Security Expertise: Serve as an SME on topics including firewall policy design, SSL certificate management, vulnerability analysis, and security mitigation strategies.
Cloud and Network Security: Provide expertise in cloud platforms (AWS, Azure, PCF, Docker), network security technologies (firewalls, load balancers), and security tools such as SIEMs (ArcSight), malware protection (FireEye), and intrusion detection systems (Symantec).
Mobile and IoT Security: Implement advanced security solutions for mobile applications and IoT devices.
Compliance & Regulatory Knowledge: Apply knowledge of federal and compliance regulations (e.g., SOX, PCI, CPNI) to ensure security standards are met.
Continuous Improvement: Identify and recommend proactive security measures, improvements, and best practices to maintain a strong security posture.
Required Skills & Experience:
Cybersecurity Experience: 10+ years of experience in cybersecurity.
Programming Languages: Proficiency in Java, frameworks, Python, Node.js (5+ years).
Threat Modeling: Expertise in threat modeling methodologies like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC (5+ years).
SSL & Firewall Expertise: 8+ years of experience with SSL and 5+ years in firewall policy design.
Vulnerability Management: 5+ years of experience in vulnerability analysis, mitigation strategies, and security scanning tools like Qualys.
Security Tools: Proficiency with security tools and platforms such as:Load Balancers: A10, F5
Firewalls: CheckPoint
MDM Platforms: Mobile Iron
Cloud Providers: AWS, Azure
Malware Protection: FireEye
Advanced Persistent Threats (APT): Damballa
Privileged Account Management: CyberArk
SIEM: ArcSight
Log & Event Management: Splunk
Intrusion Detection/Prevention Systems: Symantec
Cloud Platforms & Application Security: Familiarity with PCF, Docker, and AppSec tools like Veracode (5+ years).
Scripting: Experience with scripting languages such as Python, Perl, Shell, HTML, PHP.
Web Development Knowledge: Understanding of web application development and RESTful APIs.
Thanks &
Shankar,
US IT Recruiter
ChabezTech LLC |
4 Lemoyne Dr #102, Lemoyne, PA 17043, USA
Email:
shankar(at)(url removed) | (url removed)
Title: Principal Cybersecurity Engineer
Locations: 3 Days On-site for below locations(Bellevue, WA | Overland Park, KS | Frisco, TX | Ravinia, GA | Herndon, VA)
Domain: Telecom domain Preferred
Principal Cybersecurity Engineer / Cybersecurity Architect to join our cybersecurity team.
The ideal candidate will ensure that software, systems, and infrastructure are designed and implemented with the highest security standards.
This role will involve conducting technical security assessments, code reviews, vulnerability testing, and threat modeling to identify risks and recommend remediation solutions.
As a subject matter expert (SME), you will lead cross-functional teams, collaborate with engineers, and serve as a security advisor for various enterprise projects, focusing on
mobile devices, IoT, cloud infrastructure, big data, and core network technologies.
Key Responsibilities:
Lead Security Reviews: Perform comprehensive security assessments of new technologies, designs, and processes.
Collaborate on Vulnerability Management: Work with engineering and operations teams to address vulnerabilities identified via scans, PSIRTs, and breach reports.
Design Threat Models: Implement and enhance threat modeling approaches such as STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, and CAPEC to depict trust boundaries, threat agents, and safeguards.
Develop Security Specifications: Create technical specifications and security requirements for projects and deliverables.
Advanced Security Expertise: Serve as an SME on topics including firewall policy design, SSL certificate management, vulnerability analysis, and security mitigation strategies.
Cloud and Network Security: Provide expertise in cloud platforms (AWS, Azure, PCF, Docker), network security technologies (firewalls, load balancers), and security tools such as SIEMs (ArcSight), malware protection (FireEye), and intrusion detection systems (Symantec).
Mobile and IoT Security: Implement advanced security solutions for mobile applications and IoT devices.
Compliance & Regulatory Knowledge: Apply knowledge of federal and compliance regulations (e.g., SOX, PCI, CPNI) to ensure security standards are met.
Continuous Improvement: Identify and recommend proactive security measures, improvements, and best practices to maintain a strong security posture.
Required Skills & Experience:
Cybersecurity Experience: 10+ years of experience in cybersecurity.
Programming Languages: Proficiency in Java, frameworks, Python, Node.js (5+ years).
Threat Modeling: Expertise in threat modeling methodologies like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC (5+ years).
SSL & Firewall Expertise: 8+ years of experience with SSL and 5+ years in firewall policy design.
Vulnerability Management: 5+ years of experience in vulnerability analysis, mitigation strategies, and security scanning tools like Qualys.
Security Tools: Proficiency with security tools and platforms such as:Load Balancers: A10, F5
Firewalls: CheckPoint
MDM Platforms: Mobile Iron
Cloud Providers: AWS, Azure
Malware Protection: FireEye
Advanced Persistent Threats (APT): Damballa
Privileged Account Management: CyberArk
SIEM: ArcSight
Log & Event Management: Splunk
Intrusion Detection/Prevention Systems: Symantec
Cloud Platforms & Application Security: Familiarity with PCF, Docker, and AppSec tools like Veracode (5+ years).
Scripting: Experience with scripting languages such as Python, Perl, Shell, HTML, PHP.
Web Development Knowledge: Understanding of web application development and RESTful APIs.
Thanks &
Shankar,
US IT Recruiter
ChabezTech LLC |
4 Lemoyne Dr #102, Lemoyne, PA 17043, USA
Email:
shankar(at)(url removed) | (url removed)