ingenioHq   contact us | connect with us:    twitter   linked in
careers
→ open positions
Security Engineer
expires on: January 30, 2023
LOCATION: remote/Minnesota
JOB #: 102041
JOB TYPE: Consulting
CATEGORY: Security
DURATION: 12+ months-likely extensions
CLIENT: retail

The Security Engineer IV will formulate plans and work with clients Development team to integrate build tools with Enterprise security tools. The Engineer will identify security weaknesses and evaluate the risk posture of clients technology portfolio. This role will be responsible for security services delivery, including the use of application security tools for detection, triage, and remediation of security weaknesses. The Engineer will partner with clients development and business teams to explain relevant security weaknesses and provide guidance for remediation. The Consultant is also responsible of performing manual/automated security analysis and look for loopholes of applications written in different programming languages.

Position Summary/Job Description:
Education:
Bachelors degree in IT, Computer Science, Engineering, or related field
Or Equivalent Industry Experience / Certificates

Security Engineer (75%)
Engineer will lead onboarding of application on to Enterprise Security Tools from a technical or process perspective: Demonstrate knowledge of industry trends and look for ways to apply those trends. Create a culture of high quality technical delivery. Able to scope and stage large projects into actionable and well-defined milestones for development teams. Anticipate risks and technical issues at the applications level and makes/influences development team to follow appropriate remediation steps to avoid possible risk / exposure. Have advanced knowledge and reliability, automation and monitoring practices.

Qualifications

  • Direct full-time information security, static code review, remediation, testing, software development, or software engineering.
  • Familiarity with popular web application languages and platforms. For example, JavaScript, HTML, .NET, Java Groovy, and Python or other similar technologies.
  • Knowledge of secure development of web applications and mobile applications
  • Hands on experience leading technical integration-heavy in modern security tools
  • Experienced in conducting end-to-end static analysis, using at least one commercial, application scanning tool.
  • Experienced in application onboarding, triaging, remediation with application teams and verifying proposed findings.
  • Organize, maintain, and report on project workflows, statuses, and technical tasks.
  • Identify, facilitate, and track on-going process and automation-based process improvements.
  • Ability to quickly adapt to new technologies, tools and techniques
  • Ability to perform in a fast paced, dynamic work environment and meet aggressive deadlines
  • Ability to work with technical and non-technical team members
  • Strong technical writing and verbal communication skills
  • Work with security protocols and APIs

Project Coordinator / BA (25%)
Business analysts to explore app requirements, gather relevant statistics, build strategy, and determine EIP SSCRAM team goals. Ability to possess the necessary information to estimate the scope of work  for capability initiatives.

Qualifications

  • Technical skills: These skills include stakeholder management, data modeling and knowledge of IT.
  • Analytical skills: Business analysts have to analyze large amounts of data and other business processes to form ideas and fix problems.
  • Communication: These professionals must communicate their ideas in an expressive way that is easy for the receiver to understand.
  • Problem-solving: It is a business analyst’s primary responsibility to come up with solutions to an organization’s problems.
  • Research skills: Thorough research must be conducted about new processes and software to present results that are effective.
  • Analyzing and evaluating the current business processes a team has and identifying areas of improvement
  • Collaborating and reporting with development team and stakeholders
  • Support the team to meet their commitments through proactive planning and risk mitigation approach including escalation to the relevant parties and/or the portfolio team as needed.
  • Demonstrates creativity and takes initiative in solving complex problems.
  • Design and build solutions with impact across teams
  • Work requires general understanding of multiple technologies or the breadth of a commercial enterprise platform.
  • Takes initiative to identify and solve important problems, coordinating with others on cross-cutting technical issues




Security Engineer

  • 3+ years of experience security tools such as Checkmarx, Sonatype Nexus IQ, Blackduck, Snyk, Veracode or similar tools
  • 3+ years of development experience in RESTful APIs in a modern development, automated development environment with deep understanding of CI/CD
  • 3+ years of experience and skilled in SDLC workflow management tools like Jira, Confluence, SharePoint or similar.
  • 3+ years of bash, phyton, ruby scripting
  • 3+ years of writing / creating CI/CD pipelines
  • 2+ years of experience new queries and customizing the existing Security tools queries that are not out of the box to find new vulnerabilities
  • Security industry or tool relevant certifications or training


Project / BA:

  • 3+ years of experience with increasing responsibilities in following areas, with demonstrated progression of responsibilities:
    • Business Process Re-engineering
    • Project Coordinator
    • Experience as:
      • An Engineering Systems Analyst
      • Technical Business Analyst
      • Business Systems Analyst


© 2023 Logisolve, LLC. All Rights Reserved. Equal Opportunity Employer | Privacy Policy | Contact
Logisolve, LLC. | 600 Inwood Ave N | Suite #275 | Oakdale, MN 55128 | Tel: 763.383.1000 | Fax: 651.207.5067 | info@logisolve.com