Mindlance
Principal App Sec Principal Engineer
Mindlance, Charlotte, North Carolina, United States, 28245
Hiring Manager Notes:I'd want to see specific hands-on technical experience with the following tools (specifically selecting them, integrating them into a CI / CD pipeline and writing / configuring custom queries):Checkmarx, Fortify, GHAS - CodeQLBlackDuck, Prisma, CycloneDX, Jfrog Xray, GHAS - Secrets, GHAS - DependabotInvicti Netsparker, WebInspect, AppScan, BurpSuite, ZAPWe need very deep security software engineering skills.
Job Descriptions:
Act as an advisor to leadership to develop or influence applications, network, information security, database, operating systems, or web technologies for highly complex business and technical needs across multiple groups.Lead the strategy and resolution of highly complex and unique challenges requiring in-depth evaluation across multiple areas or the enterprise, delivering solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical and inductive thinking.Translate advanced technology experience, an in-depth knowledge of the organizations tactical and strategic business objectives, the enterprise technological environment, the organization structure, and strategic technological opportunities and requirements into technical engineering solutions.Provide vision, direction and expertise to leadership on implementing innovative and significant business solutions.Maintain knowledge of industry best practices and new technologies and recommends innovations that enhance operations or provide a competitive advantage to the organization.Strategically engage with all levels of professionals and managers across the enterprise and serve as an expert advisor to leadership.Required Qualifications:
7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education..7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education3+ years of Cloud experience (GCP, Azure, AWS)Ability to Travel up to 10% of the time5 + years - Development experience in more than one language3+ years of experience with secure DevOps and deployment automation to cloud environments3 + years - CI/CD integration experience2+ years of ServiceNow ExperienceDemonstrated experience in Penetration TestingDemonstrated experience in determining root cause analysis for actionable SDLC security updatesDynamic Analysis Security Testing (DAST) experienceKnowledge of Kubernetes Containerization StrategyStatic Analysis Security Testing (SAST) experience (Checkmarx, Fortify, Semgrep, manual code review, etc.)Recent Java or C# & .NET CORE development experience including the development of RESTful APIsExperience with SDLC and Agile methodologiesExpert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practicesEEO:"Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans."
Job Descriptions:
Act as an advisor to leadership to develop or influence applications, network, information security, database, operating systems, or web technologies for highly complex business and technical needs across multiple groups.Lead the strategy and resolution of highly complex and unique challenges requiring in-depth evaluation across multiple areas or the enterprise, delivering solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical and inductive thinking.Translate advanced technology experience, an in-depth knowledge of the organizations tactical and strategic business objectives, the enterprise technological environment, the organization structure, and strategic technological opportunities and requirements into technical engineering solutions.Provide vision, direction and expertise to leadership on implementing innovative and significant business solutions.Maintain knowledge of industry best practices and new technologies and recommends innovations that enhance operations or provide a competitive advantage to the organization.Strategically engage with all levels of professionals and managers across the enterprise and serve as an expert advisor to leadership.Required Qualifications:
7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education..7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education3+ years of Cloud experience (GCP, Azure, AWS)Ability to Travel up to 10% of the time5 + years - Development experience in more than one language3+ years of experience with secure DevOps and deployment automation to cloud environments3 + years - CI/CD integration experience2+ years of ServiceNow ExperienceDemonstrated experience in Penetration TestingDemonstrated experience in determining root cause analysis for actionable SDLC security updatesDynamic Analysis Security Testing (DAST) experienceKnowledge of Kubernetes Containerization StrategyStatic Analysis Security Testing (SAST) experience (Checkmarx, Fortify, Semgrep, manual code review, etc.)Recent Java or C# & .NET CORE development experience including the development of RESTful APIsExperience with SDLC and Agile methodologiesExpert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practicesEEO:"Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans."