Jobs

Back to Jobs

Sr Cyber Security Engineer

  • Location: New York, NY
  • Salary:
  • Posted: Apr 19

Our client is a fast growing Digital Media web firm in NYC with a best of breed team of engineers. They are seeking a Sr Level Cyber Security Engineer to join their new operation. This is a highly visible role that offers a strong compensation package base +bonus + room for advancement.

Responsibilities: Sr Cyber Security Engineer will work closely with product, development, and operations teams toward the adoption and continued execution of security best practices.Responsibilities include:

  • Performing security architecture reviews; providing guidance to engineers and developers
  • Oversee internal/external vulnerability scans and coordinate related remediation activities
  • Manage the successful delivery of Information Security projects.
  • Driving implementation of security tools and platforms
  • Monitor and test web applications for vulnerabilities (including SQL Injection, Cross Site Scripting, etc.)
  • Promote secure development and coding methodologies
  • Conduct internal security assessments of platforms and sites
  • Perform security due diligence of third party tools, vendors and systems
  • Assist in the resolution of security incidents including root cause analysis

This position requires a strong technical background with in-depth knowledge of Information Securityprinciples. Strong written and communication skills are a must, as the candidate will work closely with IT and Business stakeholders. The ideal candidate is innovative, resourceful, and self-directed, and enjoys working in a rapidly changing technical environment.
Qualifications:

  • BS/MS in Computer Science or related field or equivalent years of experience
  • Solid understanding of OWASP related vulnerabilities and mitigation strategies

Experience:

  • Minimum 5 years of technical IT Security experience (including: architecture review, web application security, vulnerability management)
  • Strong knowledge of threats, vulnerabilities, attack methods and countermeasures for web based applications, including threat modelling, secure coding, and vulnerability testing
  • Experience with software development (for example: .NET, Java, C#, etc.)
  • Familiarity with regulatory and standards requirements and practices (one or more of ISO 27000 series)

Desired:

  • SOX/HIPAA experience a differentiator
  • Industry certifications such as GIAC, CISSP are a strong plus
  • Ability to perform manual web application penetration testing
  • Familiarity with Risk management processes and principles

Job Type: Full-time Local candidates only:

  • New York, NY

Required experience:

  • web application security: 5 years

Required education:

  • Bachelor's



Job listings powered by the CATS Applicant Tracking System - ©2010 CATS Software, Inc.