Job description

Senior Security Development Engineer Location: Miami, FL (Dadeland Area) Type: 1 Year Contract Compensation: $75-100 per hour SherlockTalent is looking for a Senior Security Development Engineer (Security Engineer + Software Engineer) that will be a part of the Cybersecurity Team focused on general application and infrastructure security, DevSecOps principles, code quality, vulnerability management, penetration testing, and security operations. This is a Senior Level position and must be able to lead, influence, solve challenges, and push engineering knowledge. Responsibilities • Integrate and maintain a continuous static and dynamic analysis process into the product development life cycle. • Integrate and maintain a continuous penetration testing solution that is tuned to the specific needs of the product. • Assess current attack vectors and how they might be exploited in our code base and infrastructure. • Collaborate with product delivery teams to produce business value and functionality. • Collaborate with product delivery team to help design secure application/system architecture and deployment best practices in on-premises and Cloud-based services. • Partner with Core Computing and Security teams to review and assess production traffic and its impact. • Write functional tests that prove that attack vectors are not successful. • Review code for possible flaws and develop intrusion detection algorithms on-network and in-application. • Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks. • Create comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement. • Configure and troubleshoot security infrastructure devices. • Prepare and document standard operating procedures and protocols. • Implement and monitor security measures for the protection of computer systems, networks, and information. Requirements • Bachelor’s degree in IT (equivalent work experience will be considered) • Minimum of 4-8 years of experience in secure code development, Offensive Security Certified Professional (OSCP), Global Information Assurance Certification (GIAC), and/or Certified Information Systems Security Professional (CISSP), and/or Offensive Security Certified Expert (OSCE) • Knowledge with C#, .Net, and Python software • Detailed technical knowledge of database and operating system security with a minimum of four years working with Windows and Linux technologies. • Knowledge with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols. • Thorough understanding of the latest security principles, techniques, and protocols. • Knowledge of Public Cloud security principles and best practices. • Static application security testing (SAST) tools such as Checkmarx • Dynamic application security testing (DAST) tools such as AppScan • Continuous integration and continuous delivery (CI/CD) tools such as Bamboo, Jenkins, Azure DevOps, Octopus Deploy, etc. #J-18808-Ljbffr

Requirements