Security Engineer
1 month ago
Job Title: Security Engineer - Cloud
Location: Hybrid Onsite in Issaquah, WA or Chicago, IL 3x / Week
Type: Direct Hire
Bottom Line / In a Nutshell:
- Ideally around 10 years in the industry 5+ years in Security Engineering
- Security Engineering experience with ecommerce/Retail sites/services hosted in Cloud (Azure/GCP)
- Experience with Security Tools and Frameworks
- Bot management (Kasada, DFP, Noknok etc)
- Experience working with CDN/WAFs like Fastly or Akamai
- Security issue detection/debugging/mitigation experience, Scripting ability
Summary:
Security Engineers develop, design, implement, and integrate security systems used to safeguard enterprise assets against cyber-attack. Security Engineers drive innovation, influence delivery, and maximize performance. They deliver high quality artifacts, develop and run security tests and continuously tune security tools for optimization. Security Engineers identify gaps and inefficiencies and work with the business to implement solutions based on their requirements.
As part of the Digital Site Security team the Cloud Security Engineer will be focused on improving the security posture and delivery of new and enhanced security capabilities for our BC and BD properties.
Role & Responsibilities:
- Provides security and technical expertise to support the development of security objects to satisfy business requirements.
- Analyzes and administers security policies to control physical and virtual system access.
- Identifies and investigates security issues and develops security solutions that address compliance requirements that can/ do impact security.
- Identifies, develops, and implements mechanisms to detect security incidents in order to enhance compliance and support of the security standards and procedures.
- Assesses business role requirements, reviews authorization roles, and supports authorizations
- Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users
- Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction.
- Implements best practice when applying knowledge of information systems security standards/practices (e.g. Access control and system hardening, system audit and log file monitoring, security policies, and incident handling).
- Designs and coordinates activities/engagements with other departments (loss prevention, legal, networking, etc.).
- Identifies security gaps that expose us to potential exploit and develop short- and long-term prioritized remediation to address those gaps.
- Develops and executes security controls, defenses, and countermeasures to intercept and prevent internal/external data infiltrations.
- Determines strategy and protocol for network behavior, analysis techniques, and tool implementation.
- Identifies and resolves problems often anticipating issues before they occur or before they grow; develops and evaluates options; and implements solutions that support the business.
- Provides subject matter expertise in systems security policies, standards/practices, protocols, and technologies.
- Configures, deploys, maintains, and supports security tools.
- Protects confidentiality, integrity, and availability of information from being disclosed to unauthorized parties.
- Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps.
- Identifies opportunities for streamlining, and increasing effectiveness through continuous process improvement.
- Implements practices, processes, and procedures consistent with our information security policy and IT standards.
- Develops and documents security events and incident handling procedures into Playbooks.
- Ensures that incident documentation is comprehensive, accurate, and complete.
- Triages, prioritizes, investigates, and coordinates security events and incident handling activities.
- Collaborates with business partners, project teams, and team members to build secure solutions that protects data and enables the business with tools and processes that make sense and adapt to changing business needs both on-premises and in the cloud.
- Works with internal and external auditors.
- Designs, configures and maintains various degrees of security.
- Works with stakeholders and Security Architects to identify security solutions that support their business requirements.
- Partners with other Information Security groups to conduct security risk assessments on new solutions and systems, periodic security risk assessments on existing systems; and identifies and/or recommends appropriate security mitigations and best practices.
Required Skills:
- 2+ years’ experience in Security Engineering.
- Experience in offensive security roles, such as penetration testing or ethical hacking.
- Experience with Security Engineering of sites hosted in Public Cloud (Google, Azure)
- Experience working with WAFs and CDNs such as Akamai or Fastly.
- Proficiency in scripting and programming languages (e.g. Python, JS, Java, SQL) for tool development and automation.
- Strong understanding of operating systems, network protocols, and web application security.
- Extensive experience with security tools and frameworks (e.g. Kasada, Microsoft DFP, Bloodhound, Cobalt Strike.).
- Vast experience in performing code review to identify vulnerabilities.
- A passion for cybersecurity and a commitment to staying current with emerging threats and industry trends.
Recommended Skills:
- Bachelor's/Master's degree or equivalent experience in Computer Science, Information Security, or a related field.
- One or more professional network and security certifications such as Security+, Network+, CCNA, GSEC, CISA or CISSP (or equivalent work experience).
- Experience performing computer forensics.
- Familiarity ITILv2/v3 processes such as Service Support, Service Delivery, or Continual Service Improvement.
- Familiarity with Regulatory Compliance and industry standards, such as HIPAA, SOX, and PCI.
- Familiarity in a DevOps or DevSecOps environment.
-
Software Engineer II, Platform Security
2 weeks ago
Seattle, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout The RoleAbnormal Security is looking for a Software Engineer II who is a solid software developer with a strong interest in Security & Privacy to join the Platform Security team. The Platform Security team owns the Security and Privacy platform services and infrastructure to uphold industry standards for the company's...
-
Security Engineer
4 weeks ago
Seattle, Washington, United States Syntricate Technologies Full timeWe are seeking a skilled Security Engineer to join our team at Syntricate Technologies. As a Security Engineer, you will be responsible for performing authorized security testing on complex applications.The ideal candidate will have a deep understanding of web application technologies, web protocols, and browser technologies. They will also have expertise in...
-
Security Engineer
1 month ago
seattle, United States Intelliswift Software Full time100% RemoteMust HaveAbility to read and write code 1-2yrsBasic security fundamental understandingVulnerability identification and management in code and running endpoints.Required Skills:Application security fundamentals.Web application security testing.Application development experience.Hands-on experience with SAST and DAST technologies.Vulnerability...
-
Security Engineer
3 weeks ago
seattle, United States Intelliswift Software Full time100% RemoteMust HaveAbility to read and write code 1-2yrsBasic security fundamental understandingVulnerability identification and management in code and running endpoints.Required Skills:Application security fundamentals.Web application security testing.Application development experience.Hands-on experience with SAST and DAST technologies.Vulnerability...
-
Security Engineer
2 months ago
Seattle, United States Intelliswift Software Full time100% RemoteMust HaveAbility to read and write code 1-2yrsBasic security fundamental understandingVulnerability identification and management in code and running endpoints.Required Skills:Application security fundamentals.Web application security testing.Application development experience.Hands-on experience with SAST and DAST technologies.Vulnerability...
-
Security Engineer
3 weeks ago
Seattle, United States RED SKY Consulting Full timeJob Title: Security Engineer - CloudLocation: Hybrid Onsite in Issaquah, WA or Chicago, IL 3x / Week Type: Direct Hire Bottom Line / In a Nutshell: Ideally around 10 years in the industry 5+ years in Security EngineeringSecurity Engineering experience with ecommerce/Retail sites/services hosted in Cloud (Azure/GCP)Experience with Security Tools and...
-
Security Engineer
1 month ago
Seattle, United States RED SKY Consulting Full timeJob Title: Security Engineer - CloudLocation: Hybrid Onsite in Issaquah, WA or Chicago, IL 3x / Week Type: Direct Hire Bottom Line / In a Nutshell: Ideally around 10 years in the industry 5+ years in Security EngineeringSecurity Engineering experience with ecommerce/Retail sites/services hosted in Cloud (Azure/GCP)Experience with Security Tools and...
-
Security Design Engineer
6 days ago
Seattle, United States Actalent Full timeDescription: A growing multi-disciplinary design-build company is seeking security designers for numerous upcoming projects in Seattle. The ideal candidate will have 2+ years of experience within telecom design that was familiarity with Revit and will have electrical design experience. This is a great opportunity for an entry to mid level designer to grow...
-
Cyber Security Engineer
3 weeks ago
Seattle, United States Insight Global Full timeTitle: Cyber Security EngineerLocation: Bellevue, WA – onsite 5 days a weekDuration: 3-month contractPay: $47 - $49/hr The Cyber security organization’s WAF and Firewall team is seeking skilled cybersecurity engineers to help address a backlog of external customer tickets concerning firewall policy change requests. Must Haves:3-5 years of experience as a...
-
Cyber Security Engineer
3 weeks ago
Seattle, United States Insight Global Full timeTitle: Cyber Security EngineerLocation: Bellevue, WA – onsite 5 days a weekDuration: 3-month contractPay: $50 - 53/hrThe Cyber security organization’s WAF and Firewall team is seeking skilled cybersecurity engineers to help address a backlog of external customer tickets concerning firewall policy change requests.Must Haves:3-5 years of experience as a...
-
Senior Security Engineer
4 weeks ago
Seattle, Washington, United States IonQ Inc. Full timeJob DescriptionIonQ Inc. is seeking a highly skilled Senior Security Engineer to join our team. As a key member of our security team, you will be responsible for implementing and maintaining the security of our quantum computing systems.About the RoleWe are looking for a seasoned security professional with a strong background in cloud and quantum security....
-
Security Design Engineer
1 week ago
Seattle, United States Actalent Full timeJob Title: Security Design Engineer Job Description A growing multi-disciplinary design-build company is seeking a Security Design Engineer for numerous upcoming projects in Seattle. The ideal candidate will have over 2 years of experience in telecom design, be familiar with Revit, and come from electrical experience. This is a fantastic opportunity for an...
-
Data Security Engineer
4 weeks ago
Seattle, Washington, United States Tik Tok Full timeAbout the RoleWe are seeking a highly skilled Data Security Engineer to join our team at TikTok. As a Data Security Engineer, you will be responsible for designing and developing highly scalable systems for data full lifecycle protection, including data classification, access control, encryption, masking, auditing, and alerting.Key ResponsibilitiesWork with...
-
Cloud Security Engineer
2 months ago
Seattle, United States TEKsystems Full timeJob DescriptionJob DescriptionJob Description – Cloud Security Engineer (IR) Our cybersecurity operation team (SecOp) is looking for a Cloud Security Engineer, who will join and help the team to perform Security Operations Center (SOC) duties, which focus on cloud incident response, malware analysis, and monitoring. This role will work with the team and...
-
Security Design Engineer
2 weeks ago
Seattle, United States Actalent Full timeJob Title: Security Design EngineerJob Description A growing multi-disciplinary design-build company is seeking a Security Design Engineer for numerous upcoming projects in Seattle. The ideal candidate will have over 2 years of experience in telecom design, be familiar with Revit, and come from an electrical background . This is a fantastic opportunity for...
-
Product Security Engineer, Payments Security
5 months ago
Seattle, United States Amazon.com Services LLC Full timeAmazon Payments processes millions of transactions every day across numerous countries and payment methods. Over 100 million customers and merchants send tens of billions of dollars through our systems annually. We are re-inventing the vision of our platform to provide our internal and external clients the best payment gateway service, benchmarked against...
-
Application Security Engineer
3 weeks ago
Seattle, United States Meredith CorporationAllrecipes Full timeJob Title Application Security Engineer Job Description About Your Role: Dotdash Meredith is looking for an Application Security Engineer with a track record of innovative thinking, technical expertise, and collaboration. This role will be tasked with supporting software development teams, vulnerability management and remediation, and improving security...
-
Cyber Security Engineer
3 weeks ago
Seattle, United States Insight Global Full timeCybersecurity EngineerBellevue, WA - 5 days a week onsitePR: 45-47/hrDuration: 3-MONTH CONTRACTThe Cybersecurity organization’s WAF and Firewall team is seeking skilled cybersecurity engineers to help address a backlog of external customer tickets concerning firewall policy change requests.Must Haves:3-5 years of experience as a Cybersecurity...
-
Cyber Security Engineer
3 weeks ago
seattle, United States Insight Global Full timeCybersecurity EngineerBellevue, WA - 5 days a week onsitePR: 45-47/hrDuration: 3-MONTH CONTRACTThe Cybersecurity organization’s WAF and Firewall team is seeking skilled cybersecurity engineers to help address a backlog of external customer tickets concerning firewall policy change requests.Must Haves:3-5 years of experience as a Cybersecurity...
-
Cyber Security Engineer
3 weeks ago
seattle, United States Insight Global Full timeCybersecurity EngineerBellevue, WA - 5 days a week onsitePR: 45-47/hrDuration: 3-MONTH CONTRACTThe Cybersecurity organization’s WAF and Firewall team is seeking skilled cybersecurity engineers to help address a backlog of external customer tickets concerning firewall policy change requests.Must Haves:3-5 years of experience as a Cybersecurity...