Cyber Security Engineer
6 days ago
Job Title: Cybersecurity Engineer
Location: Saint Paul, MN 55117
Duration: 12 Months
Job Description:
Hybrid position
Job Summary:
- As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them.
- A lot of this is done by conducting security assessments where the activities will include threat modeling, attack modeling, security DFMEA, vulnerability assessment, triaging, and reporting.
- This Sr. Cyber Security Engineer will also collaborate with product architects, system engineers, developers, and testers to implement secure designs by employing secure communications, network/device access control, authentication, authorization, cryptography, audit, forensics, and anomaly and misuse detection to provide information security (integrity, confidentiality, availability, and non-repudiation).
Core Job Responsibilities (others may be added):
- Define and develop processes and methodologies for designing secure systems
- Engage with teams to conduct security risk assessments and conform to organizational remediation/mitigation timelines in different phases of the secure product development lifecycle
- Provide product security support to development teams, including reviewing and explaining security tools and processes, providing vulnerability explanations and remediation guidance
- Optimize product/system security by creating and reviewing architecture and detailed design solutions that reflect best practices
- Coordinate product security program metrics and reporting
- Support ongoing vulnerability and patch management through tracking, triaging and prioritizing across all products to minimize the potential security risk
- Help drive system and product requirements to meet the regulatory and compliance requirements (like GDPR, ISO, ISA/IEC, SOC2, FedRAMP)
- Assist with training and mentoring of security champions
- Partner with third-party vendors to deliver software security tools and services
- Provide expert consultation on application security requirements and best practices with vulnerability scanning and secure application design
- Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, Compliance, and Test
- Manage 3rd party partners and vendors supplying cybersecurity-related services
- Identify the design implications within a platform and system and work with teams to minimize vulnerabilities
- Influence program decisions to reduce the risk exposure of the company
- Participate in Zero-day remediation, Hotfixes, and Incident Response efforts
- Identify and review test coverage for the security aspects of the system
- Assist in responses to external audits, customer questionnaires, penetration tests and vulnerability assessments
- Self-motivated to stay engaged with the market on new security products, threats and vulnerabilities and to apply innovative approaches in technology, marketing and service operations to meet those needs.
Basic Qualifications
- Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
- 8+ years of cumulative experience in software development and engineering expertise in Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, APIs
- 5+ years of expertise in Product Security, Security Architecture and Security Assessment: Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, SDLA tools
- Strong understanding of operational technology principles, concepts, and techniques
- Strong knowledge of current security threats, techniques, and landscape, as well as a self-motivated desire to research current in the cybersecurity landscape
- Strong knowledge of OpenSSL, TLS mutual authentication, PKI, digital signatures, and certificate management
- Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis following current and emerging threats
- Implementation experience or knowledge of security controls
- Should have good knowledge of security containers, hands-on experience with DevSecOps principles, and a good handle on end-to-end DevSecOps processes
- Technical understanding of cloud-native architecture and engineering best practices (AWS, Azure, Google Cloud)
- Working experience with OWASP Top 10 for web applications
- Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
- Knowledge of Security Industry Standards and Frameworks: e.g., NIST, ISA/IEC, GDPR, SOC2
- Excellent verbal and written communication skills, with the ability to communicate to all levels of the organization.
Preferred Qualifications
- Familiar with DISA STIG assessment and implementation for Linux and/or Windows systems
- Desirable security certification(s): GICSP, GCLD, GSOC, GDSA, or any other relevant certifications.
-
Cyber Security Engineer
6 days ago
Saint Paul, United States Entegee Full timeW2 Contract Hybrid in St. Paul, MN Cybersecurity Engineer 55-65/HR **BSEE/CS & 5+ years of Cybersecurity & SW Development **3rd Party Risk Assessment **Application, Network, Cloud, IoT & Embedded systems **Open SSL, TLS Mutual authentication, PKI, Digital Signatures & Certificate Management Basic Qualifications Bachelor's or Master's in Computer Science,...
-
Cyber Security Engineer
16 hours ago
Saint Paul, United States Entegee Full timeW2 ContractHybrid in St. Paul, MNCybersecurity Engineer55-65/HRHM Notes: Product Security- From sensors to cloudEmbedded ControlsIoTControllers and PLC’sInterior development life cycleFailure analysisImplementation- helping more on CI/CD assessment of codeSecurity assessment on their products- flow connectivityCloud/Mobile appsThread...
-
Cyber Security Engineering Specialist
2 weeks ago
Saint Louis, United States SITEC Consulting Full timeJob DescriptionJob DescriptionAbout SITECSITEC is an employee and customer focused Information Technology and Professional Services Firm specializing in design, development, and delivery of state-of-the-art technology solutions, as well as cybersecurity, software and systems engineering services.SummaryThe Cyber Security Engineering Specialist provides...
-
Cyber Security Engineering Specialist
4 weeks ago
Saint Louis, United States SITEC Consulting Full timeJob DescriptionJob DescriptionAbout SITECSITEC is an employee and customer focused Information Technology and Professional Services Firm specializing in design, development, and delivery of state-of-the-art technology solutions, as well as cybersecurity, software and systems engineering services.SummaryThe Cyber Security Engineering Specialist provides...
-
Cyber Security Engineer
5 days ago
St Paul, United States Rangam Full timeJob Title: Cybersecurity EngineerLocation: Saint Paul, MN 55117Duration: 12 Months Job Description: Hybrid positionJob Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities...
-
Cyber Threat Engineer
6 days ago
St. Paul, United States Abbott Laboratories Full timeWorking at AbbottAt Abbott, you can do work that matters, grow, and learn, care for yourself and family, be your true self and live a full life. Youâll also have access to:Career development with an international company where you can grow the career you dream of .Free medical coverage for employees* via the Health Investment Plan (HIP) PPOAn excellent...
-
Product Security Engineer
1 month ago
Saint Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeJob DescriptionJob DescriptionThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hireJob Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and...
-
Product Security Engineer
4 weeks ago
Saint Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeJob DescriptionJob DescriptionThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hireJob Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and...
-
Director of Cyber Security
2 weeks ago
St Paul, United States Entegris Full timeThe Role You will serve as the leader of cybersecurity architecture for Entegris. You will partner with cross-functional teams across functions, external partners and business divisions. Your scope of work expands across all digital systems used in and with Entegris. You will help embed cybersecurity requirements in lifecycle of digital processes. You are a...
-
Cyber Security Analyst Senior Advisor
2 weeks ago
Saint-Brieuc, Bretagne, United States Blue-Halo Full timeYou will need to login before you can apply for a job.Cyber Security Analyst Senior Advisor - Expert with Security Clearance Overview "I t's incredible to be part of a company where we value the mission and where I feel valued as more than just an engineer. The scope of my job makes every day a dynamic blend of technical innovation and strategic...
-
Cyber Operations Engineer, Senior
3 weeks ago
Saint Inigoes, United States Booz Allen Hamilton Full timeCyber Operations Engineer, SeniorThe Opportunity:Everyone knows security needs to be “baked in” to a system architecture, but you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your cyber cross domain knowledge and skills to lead the design and building of...
-
Cyber Security Engineer
2 weeks ago
St Paul, United States Gravity IT Resources Full timeNo sub vendors please - W2 only Job Title: Senior Cybersecurity EngineerDuration: 12 month contractHybrid St. Paul MN 3 days a weekManager's Notes:The manager has highlighted the importance of candidates having a balanced background, NOT overly focused on IT/GRC but aligned with the provided job description.Job Summary:We are seeking a Senior Cybersecurity...
-
Senior Product Security Engineer
4 weeks ago
Saint Paul, United States Trane Technologies Full timeJob DescriptionAt Trane TechnologiesTM and through our businesses including Trane® and Thermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a...
-
Bay Saint Louis, Mississippi, United States Base One Technologies Full timeJob Description:Our Stennis MS based client is seeking a Junior Cyber Network Defense Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff. The Monitoring and Analysis team provide 24x7 support across...
-
Saint Paul, Minnesota, United States HealthPartners Full timeHealthPartners is currently hiring for a Cyber Security Analyst/ Role-Based Access Control Specialist (RBAC). The RBAC Specialist is critical to the overall security of the HealthPartners organization and plays a pivotal role in creating and maintaining application and business roles within our Identity and Access Management (IAM) system. It is responsible...
-
Saint Paul, United States HealthPartners Full timeHealthPartners is currently hiring for a Cyber Security Analyst/ Role-Based Access Control Specialist (RBAC) . The RBAC Specialist is critical to the overall security of the HealthPartners organization and plays a pivotal role in creating and maintaining application and business roles within our Identity and Access Management (IAM) system. It is...
-
Saint-Brieuc, Bretagne, United States Mission Essential Full timeDescription: Information Systems Security Engineer with Security Clearance The Mission Essential Group, LLC (MEG) is a leading provider of information management solutions for critical needs, known for its innovative approach. Based in Fairfax, VA, MEG employs professionals across the United States and globally, offering competitive benefits such as salary,...
-
Product Security Engineer Contracttohire
2 weeks ago
St Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hire Job Summary: As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering...
-
Product Security Engineer Contracttohire
4 weeks ago
St Paul, United States Pira Consulting | Professional Technology Staffing Agency Full timeThis position is eligible for a Hybrid work schedule (3 or more days on site a week) and will be based out of our St. Paul, MN location. Tue - Thurs on site. 6 - 12 Month for contract to hire Job Summary: As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering...
-
Cyber Security Operations Specialist
2 months ago
Saint Louis, United States SITEC Consulting Full timeJob DescriptionJob DescriptionPosition Overview: Provide CSOC Tier 2 services, which is 24x7x365 coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents. CSOC Tier 2 services includes malware and implant analysis, and forensic artifact handling and analysis. When a...