Cyber Security Engineer (Web Application Security)

Mindlance

Reston, VA

JOB DETAILS
SKILLS
Amazon Web Services (AWS), Analysis Skills, Applications Security, Architectural Design, Atlassian JIRA, Automation, Business Strategy, CEH - Certified Ethical Hacker, CISM - Certified Information Security Manager, Cloud Computing, Computer Science, Computer Security, Continuous Deployment/Delivery, Continuous Integration, Docker, Establish Priorities, GitHub, Information Technology & Information Systems, Internet Application, Internet Security, Java, JavaScript, Jenkins, Linux Operating System, Metrics, Microsoft Windows Operating System, Network Protocols, Operating Systems, Policy Development, Problem Solving Skills, Procedure Development, Project/Program Management, Python Programming/Scripting Language, Risk, Risk Management, Scripting (Scripting Languages), Secure Coding, Security Software, ServiceNow, Software Development, Software Development Lifecycle (SDLC), Software Testing, Source Code/Configuration Management (SCM), Strategic Planning, System Architecture, Systems Administration/Management, Test Tools
LOCATION
Reston, VA
POSTED
1 day ago
Hybrid at Reston, VA

2nd Round In-Person - MUST

PURPOSE:

Develops and implements security solutions. Administers security technology systems by architecting and engineering/developing trusted systems into secure systems. Assists in the development of implementation and deployment plans that are aligned to the organizational strategic plan objectives and security requirements. Advises management in developing cybersecurity policies, processes, and procedures.

ESSENTIAL FUNCTIONS:
20% Assists with day-to-day support of security solutions.
20% Assists with engineering support and system administration of specialized cybersecurity solutions.
15% Solves complex problems and answers routine questions about the installation, operation, configuration, and customization of cybersecurity software.
15% Identifies potential conflicts with the implementation of any cybersecurity solutions.
10% Answers routine questions about the installation, operation, configuration, and customization of cybersecurity solutions.
10% Reviews and analyzes appropriate cybersecurity solution system logs for performance and functional anomalies.
10% Works with system design architects and project managers to provide security requirements.

Qualifications
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable
accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education Level: Bachelor's Degree

Education Details: Computer Science, Information Technology, or related field

Experience: 3 - 5 years relevant IT security experience

In Lieu of Education
In lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Preferred Qualifications
Mid-Level Cybersecurity Engineer

" Hands-on experience with application security, software development, secure SDLC, DevSecOps practices, CI/CD automation.
" Experience with one or more programming or scripting languages such as Java, JavaScript, Python with focus on secure coding practices and vulnerability management.
" Deep understanding of operating systems (Linux/Windows), networking protocols, and scripting /programming languages like python.
" Experience with container security, Kubernetes, Helm, Docker, and cloud native workload protection.
" Familiarity with application security testing tools such as Checkmarx, Contrast Security, TideLift, Burp Suite, OWASP Dependency Check, Fortinet or similar platforms.

" Experience with vulnerability identification, triage, remediation validation, and risk-based prioritization.
" Experience working with CI/CD and source code management platforms such as Bitbucket, GitLab, GitHub, Jenkins, or similar tools.
" Experience supporting security automation, metrics reporting, and vulnerability management integrations with tools such as Jira, ServiceNow, or risk management platforms
" Hands-on experience securing cloud environments, preferably AWS.
" Professional certifications such as the Offensive Security Certified professional (OSCP) or Certified Ethical Hacker (CEH) preferred.

Licenses/Certifications
CISSP Certified Information Systems Security Professional Upon Hire Req or
CISM - Certified Information Security Manager Upon Hire Req or
Certified Ethical Hacker (CEH) Upon Hire Req or
Certified Information Systems Auditor (CISA) Upon Hire Req

EEO:
Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.

About the Company

M

Mindlance