Principal Cybersecurity Engineer/ Jr Cybersecurity Architect

JOB DESCRIPTION

Principal Cybersecurity Engineer/ Jr Cybersecurity Architect 

Location – Bellevue WA, Overland Park KS, Frisco TX, Ravinia GA, or Herndon VA (Day1 onsite or 3 Days onsite)

Long Term

Mandatory Areas

Must Have Skills –

Cyber Security : 10+ Years

Java, frameworks, python, Nodejs : 5+ Years

Threat Modelling like STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC : 5+ Years

SSL: 8+ Years

Firewall policy design: 5+ Years

vulnerability analysis & mitigation: 5+ Years

Understanding load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec): 5+ Years

Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode): 5+ Years

• Leads information security review of new technologies, designs, and remediation planning efforts.

• Collaborates with Engineering & Operations Teams to address security vulnerabilities found via PSIRTs, scans or breaches

• Investigates and/or leads identifying security needs & recommends plans/resolutions. Implements, tests & monitors info security improvements.

• Significant experience with the analysis of underlying technologies that form the solution necessary for the application of threat identification,analysis, and thread model design. The threat model depicts trust boundary, threat agent(s), threat vector(s), and safeguard(s) necessary to protect person, asset, data, and brand.

• Significant experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC,

• Mobile Application threat model, Cyber Threat Tree, and data flow diagram

• Subject matter expert in multiple facets of network & information security, including Firewall policy design, SSL Certificate management,

• vulnerability analysis & mitigation, and other topics as assigned.

• Advanced understanding of IP/Security solutions & technologies applicable to the Wireless Network Architecture.

• Subject matter expert in all facets of network & information security, including Firewall policy design, SSL Certificate management, vulnerability analysis & mitigation, and other topics as assigned.

• Ability to create technical specification and requirements and work independently and with no direction/supervision. Able to quickly adapt to new or evolving technologies related to new product & services requiring validation or research.

• Strong verbal and communication skills with diverse cross functional groups. Ability to present advanced concepts to leadership, peers, and others in subordinate roles.

• Understanding load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec),

• Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)

• Advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)

• Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI

• Working knowledge of web application development, RESTful APIs, and skills in Java, frameworks, python, Nodejs.

• Experience with mobile applications, and handset security.

**-**

**Thanks & Regards**

**Sridhar G**

**Lead Recruiter**

**Torque Technologies LLC**

**Minority Business Enterprise (MBE) Certified | Member of IT Serve Alliance**

**An E-Verified Company | INC 5000 Company**
1135 Kildaire Farm Road, Suite #200, Cary, NC, 27511

P: (919)234-7515 | F: 203-547-6447

E: sridhar@torquetek.com

Linkedin: linkedin.com/in/sridhar-g-a956a398

Torque Technologies LLC is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to age, race, color, religion, sex, national origin, sexual orientation, disability, or veteran status.