AWS Security Engineer II

at Russell Tobin & Associates
Location Reston, VA
Date Posted June 30, 2020
Category Default
Job Type Full-time

Description

JOB INFORMATION
Design and implement systems and procedures to sustain the security, integrity, and availability of the organization’s data. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization’s systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May participate in simulated attacks or security violations to assess the organization’s data security measures.

KEY JOB FUNCTIONS
Strong understanding of fundamental Application and Infrastructure Security concepts, including common types of attacks and exploitation techniques.

  • Solid Experience with various application security tools (Exampleu2014ZAP, BURP, Tenable,Check Mark, Semmel, fortify, Sonatype, Kali, WebInspect/AppScan, dependency check).
  • Solid understanding of common web and systems application vulnerabilities.Experience integrating security tools into the DevOps environment (such as Zap or Burp)
  • Familiarity with key security concepts/frameworks such as OWASP, CVE, and CVSS.
  • Proficient in automation and deploying CI and CD tools and services (Jenkins Pipeline as Code, Git, Maven).u00a0
  • Experience with Python, bash, Linux shell or similar
  • Experience integrating with native AWS services (CodePipeline, CodeCommit, CodeBuild, CodeDeploy, EC2, EKS, ECR, S3)
  • Hands on experience building solutions with tools and services like AWS CloudFormation, Terraform, or custom build orchestration tools leveraging SDKs or directly interacting with APIs
  • Experience working one or more of the following languages: Java, Python, or Node.js
  • Knowledge of networking, IAM, API and security assessment tools/methodologies.u00a0u00a0
  • Familiar with container and orchestration.
  • Familiar with IAM protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth.u00a0
  • Understanding of the cyber threat landscape and methodologies to protect technology assets.
  • AWS Certified Developer Associate or AWS Certified Solutions Architect Associate preferred.
  • Excellent verbal and written communication skills

Qualifications:

EDUCATION

Bachelor Degree or Equivalent preferred in Computer Science or IT/IS

MINIMUM EXPERIENCE

u00b7u00a0u00a0u00a0u00a0u00a0u00a0u00a0u00a0 4-6 years of related experience

SPECIALIZED KNOWLEDGE & SKILLS

  • Strong Python, bash, Linux shell or similar
  • Experience integrating with native AWS services (CodePipeline, CodeCommit, CodeBuild, CodeDeploy, EC2, EKS, ECR, S3)
  • Experience integrating security tools into the DevOps environment (such as Zap or Burp)
  • Proficient in automation and deploying CI and CD tools and services (Jenkins Pipeline as Code, Git, Maven).
  • Hands on experience building solutions with tools and services like AWS CloudFormation, Terraform, or custom build orchestration tools leveraging SDKs or directly interacting with APIs
  • Experience working one or more of the following languages: Java, Python, or Node.js
  • Knowledge of networking, IAM, API and security assessment tools/methodologies.
  • Familiar with container and orchestration.
  • Familiar with IAM protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth.
  • Understanding of the cyber threat landscape and methodologies to protect technology assets.
  • AWS Certified Developer Associate or AWS Certified Solutions Architect Associate preferred.
  • Excellent verbal and written communication skills
Drop files here browse files ...