Tittle : Security Engineer

Location : Pennsylvania, ( Onsite)

Position type : 1 Year contract

Experience

A minimum of 8 years of experience using penetration testing tools like Burp Suite.

Experience in application security tools and IDE Plug-in environments, including HP Fortify.

Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25.

Expertise in system hardening and remediation.

Proficiency in security assessments, penetration testing, and code reviews.

Expertise in threat modeling, risk assessment, and vulnerability management.

Knowledge of federal compliance standards, including NIST 800-53 and NIST CSF.

Strong leadership, communication, and interpersonal skills.

Collaborative and effective in cross-functional team environments.

Strong analytical skills to assess risks and vulnerabilities in complex systems.

Preferred Qualifications

Professional certifications such as CISSP, CSSLP, or CEH

Cloud Technology Expertise: Demonstrate a working knowledge of various enterprise technology stacks used to build applications in the cloud. Your understanding of cloud infrastructure will enable you to assess security aspects unique to cloud-based mobile applications and API's.

Cloud Platform Experience: Possess working knowledge and practical experiences in security testing within cloud platforms, particularly Azure. Your familiarity will be crucial for assessing the security of cloud-hosted mobile applications and APIs.

Proficiency in scripting and automation for security testing.