Cyber Security Engineer

2 weeks ago

St Paul, United States Tekwissen Full time

Position: Cyber Security Engineer

Location: St Paul, MN 55110

Duration: 12 Months

Job Type: Contract

Work Type: Hybrid

Pay Rate: 65-70/Hourly/W2

Overview:

TekWissen Group is a workforce management provider throughout the USA and many other countries in the world. Our client is a company that specializes in global climate technologies. It operates Climate segment that delivers energy efficient products and energy services. The company offers the client and American Standard Heating & Air Conditioning which provides heating, ventilation, and air conditioning (HVAC) systems, and commercial and residential building services, parts, support, and controlsenergy services and building automation.

Job Summary:

  • As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and vulnerabilities in the early stages and embed security requirements to address and validate them.
  • A lot of this is done by conducting security assessments where the activities will include threat modeling, attack modeling, security DFMEA, vulnerability assessment, triaging, and reporting.
  • This Sr. Cyber Security Engineer will also collaborate with product architects, system engineers, developers, and testers to implement secure designs by employing secure communications, network/device access control, authentication, authorization, cryptography, audit, forensics, and anomaly and misuse detection to provide information security (integrity, confidentiality, availability, and non-repudiation).

Core Job Responsibilities (others may be added):

  • Define and develop processes and methodologies for designing secure systems
  • Engage with teams to conduct security risk assessments and conform to organizational remediation/mitigation timelines in different phases of the secure product development lifecycle
  • Provide product security support to development teams, including reviewing and explaining security tools and processes, providing vulnerability explanations and remediation guidance
  • Optimize product/system security by creating and reviewing architecture and detailed design solutions that reflect best practices
  • Coordinate product security program metrics and reporting
  • Support ongoing vulnerability and patch management through tracking, triaging and prioritizing across all products to minimize the potential security risk
  • Help drive system and product requirements to meet the regulatory and compliance requirements (like GDPR, ISO, ISA/IEC, SOC2, FedRAMP)
  • Assist with training and mentoring of security champions
  • Partner with third-party vendors to deliver software security tools and services
  • Provide expert consultation on application security requirements and best practices with vulnerability scanning and secure application design
  • Partner closely on security operations tasks with cross-functional teammates in IT, DevOps, Engineering, Compliance, and Test
  • Manage 3rd party partners and vendors supplying cybersecurity-related services
  • Identify the design implications within a platform and system and work with teams to minimize vulnerabilities
  • Influence program decisions to reduce the risk exposure of the company
  • Participate in Zero-day remediation, Hotfixes, and Incident Response efforts
  • Identify and review test coverage for the security aspects of the system
  • Assist in responses to external audits, customer questionnaires, penetration tests and vulnerability assessments
  • Self-motivated to stay engaged with the market on new security products, threats and vulnerabilities and to apply innovative approaches in technology, marketing and service operations to meet those needs.

Basic Qualifications

  • Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
  • 8+ years of cumulative experience in software development and engineering expertise in Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, APIs
  • 5+ years of expertise in Product Security, Security Architecture and Security Assessment:
  • Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, SDLA tools
  • Strong understanding of operational technology principles, concepts, and techniques
  • Strong knowledge of current security threats, techniques, and landscape, as well as a self-motivated desire to research current in the cybersecurity landscape
  • Strong knowledge of OpenSSL, TLS mutual authentication, PKI, digital signatures, and certificate management
  • Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis following current and emerging threats
  • Implementation experience or knowledge of security controls
  • Should have good knowledge of security containers, hands-on experience with DevSecOps principles, and a good handle on end-to-end DevSecOps processes
  • Technical understanding of cloud-native architecture and engineering best practices (AWS, Azure, Google Cloud)
  • Working experience with OWASP Top 10 for web applications
  • Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc
  • Knowledge of Security Industry Standards and Frameworks: e.g., NIST, ISA/IEC, GDPR, SOC2
  • Excellent verbal and written communication skills, with the ability to communicate to all levels of the organization.

Preferred Qualifications

  • Familiar with DISA STIG assessment and implementation for Linux and/or Windows systems
  • Desirable security certification(s): GICSP, GCLD, GSOC, GDSA, or any other relevant certifications

  • Cyber Security Specialist

    4 days ago

    St Paul, United States MedNet Global Healthcare Solutions LLC Full time

    MedNet Egypt is one of the leading managed care service organizations that caters to healthcare needs and offers financial protection against unforeseen health risks. As a Cyber Security Specialist, you are the front line of defense for the safety and integrity of the company’s digital information. Working closely with management, you will be responsible...

  • Senior Cybersecurity Engineer

    3 days ago

    St Paul, United States SPECTRAFORCE Full time

    Job Title: Senior Cybersecurity Engineer Location: St Paul, MN, - Hybrid Duration: 12 months (with temp to hire potential) Job Summary? As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and...

  • Senior Cybersecurity Engineer

    3 weeks ago

    St Paul, United States SPECTRAFORCE Full time

    Job Title: Senior Cybersecurity EngineerLocation: St Paul, MN, - HybridDuration: 12 months (with temp to hire potential)Job Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and...

  • Senior Cybersecurity Engineer

    3 weeks ago

    St Paul, United States SPECTRAFORCE Full time

    Job Title: Senior Cybersecurity EngineerLocation: St Paul, MN, - HybridDuration: 12 months (with temp to hire potential)Job Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and...

  • Application security engineer

    3 weeks ago

    St Paul, United States Tata Consultancy Services Full time

    Technical/Functional Skills Threat Modelling SAST (Static Application Security Test) DAST (Dynamic Application Security Test) Microfocus Web Inspect Enterprise / Scan Central DAST Roles & Responsibilities As a security engineer, you will be responsible for managing Application security tools: SAST, DAST and SCA. You will participate in Threat Modelling...

  • Information Security Specialist

    5 days ago

    St Paul, United States U.S. Bancorp Full time

    Department: Wealth, Corporate, Commercial and Institutional Banking (WCIB) Operations - SPO Production & System Support - System Access Services. The U.S. Bancorp Global Security Operations Center is responsible for the continuous monitoring of cyber Security Specialist, Security, Information, Specialist, Operations, Monitoring, Technology, Banking

  • Cyber Security Operations Specialist

    2 weeks ago

    St Louis, United States SITEC Consulting LLC Full time

    Position Overview: Provide CSOC Tier 2 services, which is 24x7x365 coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents. CSOC Tier 2 services includes malware and implant analysis, and forensic artifact handling and analysis. When a CIRT is stood up, all...

  • Cyber Security Operations Specialist

    4 days ago

    St Louis, United States SITEC Consulting LLC Full time

    Position Overview: Provide CSOC Tier 2 services, which is 24x7x365 coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents. CSOC Tier 2 services includes malware and implant analysis, and forensic artifact handling and analysis. When a CIRT is stood up, all...

  • IT Application Security Engineer

    4 days ago

    St Louis, United States Stifel Full time

    Summary The Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. Application Security Engineers work with software development teams to ensure security is included in the complete software development life cycle. This role...

  • Senior NonStop Engineer

    1 week ago

    St Paul, United States Fiserv Full time

    Location field must contain 'city, state' or a zip code to perform a radius search (e.g., Denver, CO or 46122 ). City and state must be separated by a comma followed by a space (e.g., Houston, TX ) Calling all innovators – find your future at Fiserv. We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that...

  • IT Application Security Engineer

    2 weeks ago

    St Louis, United States Stifel Full time

    Summary The Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. Application Security Engineers work with software development teams to ensure security is included in the complete software development life cycle. This role...

  • Senior Cybersecurity Analyst

    4 days ago

    St Paul, United States Blue Star Partners, LLC Full time

    Job Description Job Description Job Title: Senior Cybersecurity Analyst Location: St. Paul, MN – Onsite – Local candidates only Period: 05/13/2024 to 12/20/2024 – possibility of extension Hours/Week: 40 hours Rate: $40-$45/hour (Hours over 40 will be paid at Time and a Half) Contract Type: W-2 Scope of Services: The Senior Cybersecurity Analyst...

  • Senior Cybersecurity Specialist

    2 weeks ago

    St Paul, United States Blue Star Partners, LLC Full time

    Job Title: Senior Cybersecurity Specialist Location: St. Paul, MN – Onsite – Local candidates only Period: 05/13/2024 to 12/31/2024 – possibility of extension Hours/Week: 40 hours  Rate: $40-$50/hour (Hours over 40 will be paid at Time and a Half) Contract Type: W-2  Scope of Services: The Senior Cybersecurity Specialist contributes to the...

  • Sr. Systems Engineer

    3 days ago

    St Paul, United States Marriott Full time

    Job Number 24062106 Job Category Information Technology Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States Schedule Full-Time Located Remotely? Y Relocation? N Position Type Management Job Summary The Sr. Systems Engineer ensures that stability, integrity, and efficient security operations that support core...

  • Senior Application Security Engineer

    4 days ago

    St Louis, United States Stifel Full time

    Summary The Sr. Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. The Sr Application Security Engineer works with software development teams from design to code implementation, ensuring security is included in the...

  • Cyber Hunt Level II

    2 weeks ago

    St Louis, United States Strategic ASI Full time

    What You'll Get to Do: Our client is hiring a new member to our Cyber Security Hunt Services team. This role will proactively search for indicators of compromise on NGA systems through planned Hunt missions. Assign the Cybersecurity Operations Manager to direct and oversee all Contractor support for this sub-service and serve as the primary...

  • Senior Application Security Engineer

    2 weeks ago

    St Louis, United States Stifel Full time

    Summary The Sr. Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. The Sr Application Security Engineer works with software development teams from design to code implementation, ensuring security is included in the...

  • Senior Cybersecurity Engineer

    2 weeks ago

    Saint Paul, United States SPECTRAFORCE Full time

    Job Title: Senior Cybersecurity EngineerLocation: St Paul, MN, - HybridDuration: 12 months (with temp to hire potential)Job Summary:As a Senior Cybersecurity Engineer you will be responsible for working with other Building Automation System (BAS) controls and software engineering team members to identify business, technology and product risks and...

  • Senior Systems and Infrastructure Engineer, Information Security

    3 weeks ago

    St Albans, United States Walmart Full time

    Position Summary... What you'll do... At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus...

  • IT Security Specialist

    2 days ago

    St. Louis, United States Eighth Circuit Court of Appeals Full time

    Qualification s:  A bachelor’s degree in cyber security, computer science, or related field from an accredited four-year college or university and/or IT project management and/or cyber security certifications such as a Certified Information Systems Security Professional (CISSP), Certified Information System Auditor (CISA), Certified Ethical Hacker...