Principle Security Engineer

Burlington, MA | Perm

Post Date: 08/10/2018 Job ID: 227068 Industry: IT
Softworld, Inc. client is  seeking a highly-motivated, detail-oriented individual to join their Information Security team. As a leader in the Application Security community, our client's customers rely on us to deliver a world-class platform in a highly secure fashion. In this role, you will have the opportunity to help make our infrastructure, products, and customers more secure.

The role of Principle Information Security Engineer  will include the following responsibilities:

  • Continuously monitor and improve the security posture of the company
  • Provide defensive recommendations on new threats to global systems, applications, and technologies
  • Drive adoption of security tools and best practices specifically within cloud infrastructure
  • Participate and lead response to security incidents as a member of the Incident Response Team
  • Collaborate with other teams inside of Veracode to deploy new security-related tools and processes across the organization


Required Experience:

  • BS or MS in Computer Science, Engineering, or Information Security
  • Minimum of 5 years of experience in information security or a mixture of related technical fields
  • Strong background in Information Security concepts
  • Familiarity with FedRAMP and/or other regulations/frameworks (ex: PCI, PII, ISO 27001, NIST)
  • Experience with LAN/WAN networking and security infrastructure (Firewalls, IDS/IPS, and VPNs). System hardening and incident response
  • Capable of performing incident response activities with tools such as Splunk, Fidelis, FireEye
  • Managed or lead vulnerability management processes with tools such as Nexpose, Nessus, or Qualys

Desired Qualifications:

  • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within IaaS, PaaS, SaaS, and other cloud environments
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms
  • Exposure to Public Key Infrastructure (PKI) management including AWS KMS, Hashicorp Vault, and Gemalto SafeNet KMS
  • Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies
  • Experience with deployment orchestration, automation, and security configuration management
  • Recognized security certifications are highly desirable (CISSP, CISA, GIAC, CEH and others)
Apply Online
Apply with Facebook Apply with LinkedIn

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: