HarveyNashUSA
Security Engineer
HarveyNashUSA, Victorville, California, United States, 92394
Position Details:
Client:
Well Known Largest Customer
Title:
Security Engineer
Location:
Mountain View, CA 94043
Duration:
12 Months Contract (Possible extension)
Job Description:
Primary Focus:70% Security Engineer, 30% DevOps knowledgeCollaborate with the DevOps and engineering teams to maintain security during software deployments.Responsibilities:
Deploy and manage security tools that monitor and assess infrastructure health.Write basic scripting to deploy security artifacts into the system (DevSecOps practices).Utilize tools for vulnerability management and container workload protection, particularly in Kubernetes.Harden and secure Kubernetes deployments with enterprise-grade security tools.Manage security across platforms, focusing on Application Security, Container Security, Platform Security, and Infrastructure Security.Automate deployment processes using Terraform and Python.Technology Requirements:
Cloud Platforms: Focused on AWS (experience with GCP and Azure is not necessary).Security Tools:Candidate will work on this tool - Cloud Workload Protection Platforms (CWPP).Automation: Experience with CI/CD pipelines, DevOps tools (e.g., Jenkins), and scripting languages for deployment (Terraform, Python).Skills & Experience:
Top 3 to 5 Skills:
DevOps automation with Python and Terraform.Strong experience in Security Vulnerability Management (operating, developing, and engaging with vulnerability management tools).Basic understanding of DevSecOps principles.Experience managing container workload security in Kubernetes.Knowledge of CVEs (Critical Vulnerabilities and Exposures) and how to prioritize and resolve them.Certifications: Preferred certifications like CISSP, CSSP, or relevant security certifications.Education:
Bachelor`s Degree + 10+ years in security, with at least 2-3 recent years focused on security or vulnerability management is highly preferredOR an Associate degree with Certification in security like CISSP CSSP with 10 years of security engineer experience that too in most recent jobsOR just 10+ years of strong experience as a Security Engineer with vulnerability security management and automation using python and terraformImportant Notes:
This role is not for Penetration Testers, Audit & Compliance Analysts, or purely DevOps Engineers.The ideal candidate will not focus solely on governance or auditing security but on hands-on vulnerability management and DevSecOps.Work Setup: 4 days onsite in Mountain View, 1 day remote.Team Structure: The Security Engineer will report to the manager and work closely with the DevOps, Engineering, and Product teams.Interviews: 3 rounds, which may include coding questions such as writing deployment code using Terraform.Notes:
The Security Engineer will be responsible for ensuring the security of software, and deploying security scan plugins as part of CI/CD pipeline through automation (Terraform).Designing, implementing, maintaining, and optimizing security tools (examples: App vuln management, Vault-Secrets management) needed to protect organizations' data, systems, and infrastructure.Expert knowledge of niche computer security software, such as Burp Suite, Nessus, SAST tools-Static Application Security Testing, CWPP (Container Workload Protection Platform)Are you a highly skilled and experienced DevOps engineer with a passion for security? Do you thrive in a fast-paced, constantly evolving environment? If so, we have an exciting opportunity for you to join our team as a Security DevOps Engineer. In this role, you will be responsible for designing, implementing, and maintaining our security infrastructure and processes, ensuring the protection of our company's systems and data. You will work closely with cross-functional teams to integrate security into our DevOps practices and promote a culture of security awareness throughout the organization. To excel in this position, you must have a deep understanding of DevOps principles and a solid background in security best practices. You should also possess excellent communication skills and the ability to collaborate with various teams to achieve common goals. If you are a highly motivated individual with a strong drive for continuous learning and improvement, we encourage you to apply for this challenging role.QUALIFICATIONSRequired
Experience or formal education in any combination of the following areas: Software development, application administration, scripting/coding, security analysis and threat detectionExperience with complex application troubleshooting and performance tuningExperience in Software development and supportExperience providing Security services (For example; application/Infrastructure vulnerability management, firewalls, Cloud security, security testing and authentication services)Knowledgeable in Integration services (CI/CD platforms, configuration management, cloud services).ACCOUNTABILITIES:
Develops, tests, deploys, and iteratively improves product capabilities and features in collaboration with product managers, and other engineers on the product teamDevelops high quality applications that are secure, easy to operate, difficult to break, and extremely observable with measurable results.Responsible for all technical aspects of the product application lifecycle including, code, infrastructure, data, security, and CICDContributes to product engineering and software standards.Continuously develops self and supports the development of others.Education/Experience:
Bachelor's degree in computer science or equivalent training required.10+ years related experience requiredSecurity certification: AWS, CISSP/CCSP/Security+ -- DesirableProgramming: Python, NodeJS, Java, Terraform. -- RequiredBeeline Summary:
The main function of an specialty analyst/developer is to develop, create, and modify general computer applications software or specialized utility programs utilizing software packages considered. A typical specialty analyst/developer is responsible for designing software or customizing software for client use with the aim of optimizing operational efficiency.Job Responsibilities:
Review and approve modifications to existing software to correct errors, allow it to adapt to new hardware, or to improve its performance.Review and approve the design and development of software systems, using scientific analysis and mathematical models to predict and measure outcome and consequences of design.Obtain and evaluate information on factors such as reporting formats required, costs, and security needs to determine hardware configuration.Counsel customers about software system design and maintenance.Counsel systems analysts, engineers, programmers and others on project limitations and capabilities, performance requirements and interfaces.Develop and direct software system testing and validation procedures, programming, and documentation.Supervise the work of programmers, technologists and technicians and other engineering and scientific personnel.Skills:
Verbal and written communication skills, problem solving skills, customer service and interpersonal skills.Expert ability to work independently and manage one s time.Expert leadership and mentoring skills necessary to provide support and constructive performance feedback.Expert knowledge of circuit boards, processors, electronic equipment and computer hardware and software.Expert knowledge of design techniques and principles involved in production of drawings and models.Expert knowledge of niche computer software, such as Oracle, Csharp.net, Lawson, etc.Education/Experience:
Bachelor's degree in computer science or equivalent training required.10+ years related experience required.
Client:
Well Known Largest Customer
Title:
Security Engineer
Location:
Mountain View, CA 94043
Duration:
12 Months Contract (Possible extension)
Job Description:
Primary Focus:70% Security Engineer, 30% DevOps knowledgeCollaborate with the DevOps and engineering teams to maintain security during software deployments.Responsibilities:
Deploy and manage security tools that monitor and assess infrastructure health.Write basic scripting to deploy security artifacts into the system (DevSecOps practices).Utilize tools for vulnerability management and container workload protection, particularly in Kubernetes.Harden and secure Kubernetes deployments with enterprise-grade security tools.Manage security across platforms, focusing on Application Security, Container Security, Platform Security, and Infrastructure Security.Automate deployment processes using Terraform and Python.Technology Requirements:
Cloud Platforms: Focused on AWS (experience with GCP and Azure is not necessary).Security Tools:Candidate will work on this tool - Cloud Workload Protection Platforms (CWPP).Automation: Experience with CI/CD pipelines, DevOps tools (e.g., Jenkins), and scripting languages for deployment (Terraform, Python).Skills & Experience:
Top 3 to 5 Skills:
DevOps automation with Python and Terraform.Strong experience in Security Vulnerability Management (operating, developing, and engaging with vulnerability management tools).Basic understanding of DevSecOps principles.Experience managing container workload security in Kubernetes.Knowledge of CVEs (Critical Vulnerabilities and Exposures) and how to prioritize and resolve them.Certifications: Preferred certifications like CISSP, CSSP, or relevant security certifications.Education:
Bachelor`s Degree + 10+ years in security, with at least 2-3 recent years focused on security or vulnerability management is highly preferredOR an Associate degree with Certification in security like CISSP CSSP with 10 years of security engineer experience that too in most recent jobsOR just 10+ years of strong experience as a Security Engineer with vulnerability security management and automation using python and terraformImportant Notes:
This role is not for Penetration Testers, Audit & Compliance Analysts, or purely DevOps Engineers.The ideal candidate will not focus solely on governance or auditing security but on hands-on vulnerability management and DevSecOps.Work Setup: 4 days onsite in Mountain View, 1 day remote.Team Structure: The Security Engineer will report to the manager and work closely with the DevOps, Engineering, and Product teams.Interviews: 3 rounds, which may include coding questions such as writing deployment code using Terraform.Notes:
The Security Engineer will be responsible for ensuring the security of software, and deploying security scan plugins as part of CI/CD pipeline through automation (Terraform).Designing, implementing, maintaining, and optimizing security tools (examples: App vuln management, Vault-Secrets management) needed to protect organizations' data, systems, and infrastructure.Expert knowledge of niche computer security software, such as Burp Suite, Nessus, SAST tools-Static Application Security Testing, CWPP (Container Workload Protection Platform)Are you a highly skilled and experienced DevOps engineer with a passion for security? Do you thrive in a fast-paced, constantly evolving environment? If so, we have an exciting opportunity for you to join our team as a Security DevOps Engineer. In this role, you will be responsible for designing, implementing, and maintaining our security infrastructure and processes, ensuring the protection of our company's systems and data. You will work closely with cross-functional teams to integrate security into our DevOps practices and promote a culture of security awareness throughout the organization. To excel in this position, you must have a deep understanding of DevOps principles and a solid background in security best practices. You should also possess excellent communication skills and the ability to collaborate with various teams to achieve common goals. If you are a highly motivated individual with a strong drive for continuous learning and improvement, we encourage you to apply for this challenging role.QUALIFICATIONSRequired
Experience or formal education in any combination of the following areas: Software development, application administration, scripting/coding, security analysis and threat detectionExperience with complex application troubleshooting and performance tuningExperience in Software development and supportExperience providing Security services (For example; application/Infrastructure vulnerability management, firewalls, Cloud security, security testing and authentication services)Knowledgeable in Integration services (CI/CD platforms, configuration management, cloud services).ACCOUNTABILITIES:
Develops, tests, deploys, and iteratively improves product capabilities and features in collaboration with product managers, and other engineers on the product teamDevelops high quality applications that are secure, easy to operate, difficult to break, and extremely observable with measurable results.Responsible for all technical aspects of the product application lifecycle including, code, infrastructure, data, security, and CICDContributes to product engineering and software standards.Continuously develops self and supports the development of others.Education/Experience:
Bachelor's degree in computer science or equivalent training required.10+ years related experience requiredSecurity certification: AWS, CISSP/CCSP/Security+ -- DesirableProgramming: Python, NodeJS, Java, Terraform. -- RequiredBeeline Summary:
The main function of an specialty analyst/developer is to develop, create, and modify general computer applications software or specialized utility programs utilizing software packages considered. A typical specialty analyst/developer is responsible for designing software or customizing software for client use with the aim of optimizing operational efficiency.Job Responsibilities:
Review and approve modifications to existing software to correct errors, allow it to adapt to new hardware, or to improve its performance.Review and approve the design and development of software systems, using scientific analysis and mathematical models to predict and measure outcome and consequences of design.Obtain and evaluate information on factors such as reporting formats required, costs, and security needs to determine hardware configuration.Counsel customers about software system design and maintenance.Counsel systems analysts, engineers, programmers and others on project limitations and capabilities, performance requirements and interfaces.Develop and direct software system testing and validation procedures, programming, and documentation.Supervise the work of programmers, technologists and technicians and other engineering and scientific personnel.Skills:
Verbal and written communication skills, problem solving skills, customer service and interpersonal skills.Expert ability to work independently and manage one s time.Expert leadership and mentoring skills necessary to provide support and constructive performance feedback.Expert knowledge of circuit boards, processors, electronic equipment and computer hardware and software.Expert knowledge of design techniques and principles involved in production of drawings and models.Expert knowledge of niche computer software, such as Oracle, Csharp.net, Lawson, etc.Education/Experience:
Bachelor's degree in computer science or equivalent training required.10+ years related experience required.