Logo
Pinnacle Group

Security Engineer - IV

Pinnacle Group, San Jose, California, United States, 95199


Job Description:

Targeted Years of Experience: 7 to 10 years The Product Security Team ensures Security by design product engineering and architecture for Client products. In this role as a Security Engineer, candidate will conduct security assessments for products and solutions developed by the Client Consumer Group. Candidate will collaborate with various cross-functional teams and help to create, define, and implement security controls and tooling in conjunction with internal product development and partner teams. Evaluate security postures and recommend improvement and risk reduction for Mobile Platforms (iOS/Android/TvOS/FireTV), Web, and Embedded applications. IoT Devices, Cloud services. Examples of activities build threat models, design reviews, document mitigation techniques, applying security design patterns, code reviews, etc. Manage multiple projects with a degree of impact and complexity that must be carefully controlled to support the internal business unit security requirements. Participate in deep architectural discussions to build confidence and ensure success when building new or migrating existing cloud infrastructures, applications, software, and services. Support projects at various levels, from ground level up to fully evolved projects, be able to dive into existing environments or help with the security design and requirements of a new project by evaluating the end-to-end environment of different types of services (SaaS, IaaS, PaaS) and client platforms (mobile, web, embedded applications). Continually evaluate new threats and attacks to identify the impact on business and help to develop and implement appropriate security controls. Apply cryptographic primitives and protocols for authentication, authorization and data protection. Recommend and manage transmission protection requirements for all environments (e.g., systems, applications, containers) such as VPC peering best practices, SSL certificate management, RSA key pairs, etc. Implement security modules, tools, and code snippets when needed. Develop architectural documentation, white papers and best practices for infrastructure, applications, data protection and IAM security Train and coach engineering teams to integrate CI/CD pipeline tools, test plans and vulnerability assessment tools for Cloud and other platforms. Must Have Skills:

Bachelor's degree in Computer Science or related fields Seven or more years of relevant work experience Strong knowledge of cyber security principles, standards and control frameworks Experience with performing security assessments and control gap analyses to secure the deployment of large globally distributed cloud-based and/or mobile-embedded platforms. Experience with OWASP Top 10 vulnerabilities and Cryptographic Algorithms: (PKI), X.509 Public Key Certificates, authentication protocols, transport layer security, OID, OAuth, SAML. Ability to communicate and resolve complex security or operational issues Engineering or development experience in programming languages such as Java, JavaScript, Python, Scala, C++/C, Swift, or other languages Desired Skills:

Master's degree in Computer Science or equivalent engineering experience. Direct experience with implementing Security Services and tools in AWS such as GuardDuty, Macie, CloudTrail, CloudWatch, KMS, Compute (e.g., EC2, GCE).. Experience with storage technologies such as: S3, Networking: VPC, IDS/IPS, WPA, firewalls, reverse proxies, Load Balancers, Security Groups/List. Experience with configuration tools: AWS Config, AWS Inspector, SDK/CLI. Vulnerabilities tools: Prisma Cloud, Crowdstrike, etc. Experience Container Security experience with Docker, ECS, Kubernetes. Experience with configuration languages/IaaC: JSON, CloudFormation Terraform Experience with SDLC for mobile platforms including use of obfuscation techniques, Reverse Engineering and Tamper Resistant software development on Mobile Platform. Understanding of various types of Exploits, Threat Modeling, and Attack surfaces One or more cyber security certifications: AWS Certified Solutions Architect (professional), AWS Certified Security (Specialty), CSA Certificate of Cloud Security Knowledge (CCSK), ISC2 Certified Cloud Security Professional (CCSP), CISSP, ethical hacker, etc Pay Range: $80 to $85hr on w2

The specific compensation for this position will be determined by a number of factors, including the scope, complexity and location of the role as well as the cost of labor in the market; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits including medical, dental, vision and 401K contributions as well as any other PTO, sick leave, and other benefits mandated by appliable state or localities where you reside or work.