- JOB TYPE: Freelance, Contract Position (no agencies/C2C - see notes below)
- LOCATION: Remote - United States and Canada only (TimeZone: PST/CIST | Partial overlap)
- HOURLY RANGE: Our client is looking to pay $115 – $135/hr
- ESTIMATED DURATION: 40h/week - Long-term
Our client is seeking for a Security Engineer to join their engineering team.
- Develop a proactive vulnerability and patch-management solution, showcasing a clear risk state of the infrastructure due to out-of-date software/hardware.
- Secure remote access with MFA, robust account management, state of the art monitoring, and alerting.
Utilize Infrastructure management tooling (Puppet, Chef, TF, Ansible) for consistent hardening configurations such as CIS benchmarks across cloud and on-prem infrastructure.
- Craft a strategy with tooling for security of SaaS solutions such as GSuite, Slack etc. deployed across the organization.
Develop a third party vendor review process for risk assessment and decision making.
- BS or MS in Computer Science or a related field is preferred
- 5 years of hands-on experience as a Security Engineer, DevSecOps, or SecOps with security mindset and strong interest in security
- Extensive knowledge of secure encryption key storage methods and technologies required.
- Extensive knowledge of secure cryptosystems operating practices required.
- Enthusiasm for scalable, reproducible security practices.
- Experience/familiarity with application security including standards like OWASP, tools like Burp Suite, and secure coding practices a plus.
- An understanding of standards such as ISO 27001/27002 and the NIST Cybersecurity Framework desirable.
- OS internals and security hardening (MacOS, Linux, Windows)
- Hardening of networking devices, protocols and solutions
- Security of Cloud Infrastructure platforms
- Account lifecycle management, Multi-factor authentication, authentication and authorization protocols and solutions
- Vulnerability and patch management, secure configuration deployment
When applying, mention the word CANDYSHOP when applying to show you read the job post completely. This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human RMy4yMzUuMTczLjc0M