Urgent Req – Principal Cybersecurity Engineer/ Jr Cybersecurity Architect

Let Us Help You!

Helping You Realize Your Business Goals!

Hi,

I hope you’re doing well!

Please look at the requirements below, let us know of your interest, and send us your updated resume to [email protected]

Role: Principal Cybersecurity Engineer/ Jr Cybersecurity Architect

Location – Bellevue WA, Overland Park KS, Frisco TX, Ravinia GA, or Herndon V

Job Description:

Cybersecurity Expertise:

10+ years of experience in Cyber Security.
Familiarity with threat modeling frameworks such as STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC (5+ years).

Security Technologies & Frameworks:

5+ years of experience with Java, Python, Node.js, and various frameworks for secure software development.
Experience with SSL/TLS management (8+ years), Firewall policy design (5+ years), and vulnerability analysis & mitigation (5+ years).

Security Systems & Tools:

Proficiency with a broad range of security technologies like SIEM (e.g., ArcSight, Splunk), IDS/IPS (e.g., Symantec), Firewalls (e.g., CheckPoint), Cloud platforms (e.g., AWS, Azure), and Malware protection (e.g., FireEye).
Familiarity with load balancers (e.g., A10, F5), Mobile Device Management (MDM) (e.g., Mobile Iron), Advanced Persistent Threats (e.g., Damballa), Privileged Access Management (e.g., CyberArk), and vulnerability scanning tools (e.g., Qualys, Veracode).

Cloud & Application Security:

Cloud platforms: Proficient with Docker, PCF, and cloud-based security practices.
Application Security (AppSec) experience with tools like Veracode for static code analysis.
Strong understanding of web application development, RESTful APIs, and languages such as Java, Node.js, Python.

Compliance & Regulatory Knowledge:

Threat Modeling & Risk Assessment:

Expertise in threat modeling tools and approaches (e.g., STRIDE, PASTA, TRIKE) for identifying security threats across technologies.
Experience in modeling threats for mobile applications and enterprise systems.

Scripting and Automation:

Advanced knowledge of scripting languages (Python, Perl, Shell, HTML, PHP) for automation, threat detection, and system integration.

Lead Security Initiatives:

Drive vision and results to improve security posture across various platforms (mobile, IoT, cloud, network, etc.).
Act as a Principal Security Advisor for cross-functional teams, supporting security integration into new projects and services.

Security Design & Review:

Lead the review and security assessments of new technologies and system designs.
Collaborate with Engineering & Operations Teams to address security issues identified through PSIRTs, scans, or breaches.

Threat Identification & Resolution:

Investigate security vulnerabilities and provide solutions, ensuring the timely implementation, testing, and monitoring of security improvements.
Design and implement threat models depicting trust boundaries, threat agents, threat vectors, and necessary safeguards.

Subject Matter Expert:

Provide expertise in various areas of network & information security, including Firewall design, SSL certificate management, vulnerability mitigation, and network security technologies.
Oversee the security of Wireless Network Architecture and related solutions.

Cross-Functional Collaboration:

Work closely with multiple teams (Engineering, Operations, and leadership) to assess security needs and make recommendations for remediation.
Present complex security concepts to diverse stakeholders and leadership teams.

Independent Execution:

Create technical specifications and requirements, working autonomously with little to no direction.
Quickly adapt to new or evolving technologies related to product and service validation.

With Regards

Kishore Reddy