• Location: Minnesota
  • Type: Contract To Hire
  • Job #9292
  • Salary: $45.00 Per Hour

Position Overview: We are seeking an experienced Security Engineer with over 8 years of cumulative experience in software development and engineering, specializing in various domains including Application, Network, Cloud, Mobile, IoT, ICS, Embedded systems, and APIs. The ideal candidate will possess deep expertise in Product Security, Security Architecture, and Security Assessment, with a strong track record in Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration Testing, and the use of SDLA tools. This role offers an exciting opportunity to lead security initiatives, develop robust security architectures, and drive continuous improvement across our product portfolio.

Responsibilities:

  • Lead the design and implementation of security measures for applications, networks, cloud infrastructure, mobile platforms, IoT devices, industrial control systems, embedded systems, and APIs.
  • Conduct comprehensive security assessments, including threat modeling, risk assessment, and threat analysis, to identify potential vulnerabilities and develop mitigation strategies.
  • Define and enforce secure development practices, integrating security into the Software Development Lifecycle (SDLC) and ensuring compliance with industry standards and regulations.
  • Collaborate with cross-functional teams to perform penetration testing, security code reviews, and security architecture reviews, identifying security gaps and recommending solutions.
  • Develop and maintain security documentation, including security policies, standards, guidelines, and best practices.
  • Stay abreast of emerging security threats, vulnerabilities, and industry trends, providing guidance and recommendations to mitigate risks.
  • Serve as a subject matter expert on security-related matters, providing technical guidance and mentorship to team members.
  • Participate in incident response activities, including incident detection, analysis, and resolution, to ensure timely and effective response to security incidents.

Qualifications:

  • Bachelor’s degree in Computer Science, Engineering, Information Security, or a related field; advanced degree preferred.
  • 8+ years of cumulative experience in software development and engineering, with a focus on security.
  • 5+ years of expertise in Product Security, Security Architecture, and Security Assessment, including Threat Modeling, Secure Development, Risk Assessment, Threat Analysis, DFMEA, Penetration testing, and the use of SDLA tools.
  • Strong understanding of security principles, standards, and best practices across multiple domains, including Application Security, Network Security, Cloud Security, Mobile Security, IoT Security, ICS Security, and Embedded Systems Security.
  • Hands-on experience with security assessment tools and techniques, such as static code analysis, dynamic analysis, fuzz testing, and reverse engineering.
  • Excellent analytical and problem-solving skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
  • Industry certifications such as CISSP, CISM, CEH, CSSLP, or equivalent are highly desirable.
  • Experience working in regulated industries such as healthcare, finance, or government is a plus.
  • Strong interpersonal and leadership skills, with the ability to work collaboratively in a dynamic environment.
Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!