Cybersecurity Engineer, Lead

Key Role:

Assist with the development of new capabilities focused on reducing the attack surface of applications early in the Software Development Life Cycle (SDLC). Support an internally facing capability with the primary mission of injecting security into the DevOps process to reduce the attack surface of applications after deployment. Analyze the creation of day-to-day protocols and SOPs, including static code analysis, remediation assistance, development of exploit proof of concept code, and secure code reviews and facilitate communication between the Red Team and development teams. Help to develop automated solutions for the firm's Threat Hunt Team, Vulnerability Management Team, and the Red Team. Due to the nature of work performed within this facility, U.S. citizenship is required.

Basic Qualifications:

-5+ years of experience with secure code review, static code analysis, or application security testing
-2+ years of experience with team leadership or management
-Experience with Python, Ruby, Bash, C/C++, C#, and Java
-Experience with static code analysis tools, including HP Fortify
-Knowledge of security testing standards, including OWASP and ATT&CK framework

-Ability to assist remediation efforts for discovered code review findings
-Ability to mentor junior- and mid-level staff by teaching secure code best practices
-Ability to operate and lead organized security testing engagements independently while demonstrating expertise in teamwork

-HS diploma or GED

Additional Qualifications:

-Experience with working alongside penetration testers and a Red Team for hybrid application security testing
-Experience with testing Lambda or other serverless solutions
-Ability to craft custom exploits for proof of concept code

-Possession of excellent oral and written communication skills to communicate effectively and professionally with clients, teammates, and senior leadership
-Possession of excellent organizational skills used to develop team protocol and SOPs

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.