SECURITYBRICKS, Inc. is a cybersecurity advisory firm focused on application security, and cloud security and compliance. Our security consultants possess extensive experience working with large enterprises and many are domain experts in their field. We are certified for ISO, PCI, HIPPA, SOC 2, FedRAMP 3PAO and in the final stages of certification for CMMC C3PAO. We are looking for a detail-oriented SecOps Consultant with hands-on experience to provide support in a current project. This is a contract to hire position.
SECURITYBRICKS operates in a remote, yet collaborative work environment. We are U.S. based with consultants working remotely in all 4 U.S. time zones and are looking for someone who can thrive within this environment. We are heavily customer focused, and our business comes predominantly from repeat business. A customer central mindset is a must.
SECURITYBRICKS have been a proud supporter of our veterans. We provide training and work opportunity for U.S. veterans to step into the cyber security consulting space after their active duty. We are honored to be involved in furthering the future success of our service women and men.
Role Description
You Will
- Scan configuration and network assets using Qualys, Tenable, etc.
- Scan software applications using Veracode, Coverity, Blackduck, SonarQube, etc.
- Follow Securitybricks’ Software Risk Management approach to identify security vulnerabilities
- Partner with software engineers to identify and fix security flaws and vulnerabilities, including doing code reviews and audits, design reviews
- Advocate security and secure coding practices
- Partner with technical architects, DevOps teams to fix security flaws and vulnerabilities, including doing cloud Infrastructure reviews and audits
- Advocate security and cloud compliance practices
- Document processes and help with security incident reviews
- Threat models and risk analysis
- Map threat vectors and related business impact to security vulnerabilities for prioritization
You Are
- Organized and highly detail-oriented
- Familiar with software security design patterns
- Experienced with security scanning tools
- Fluent with network security and application security tools
- Experienced in onboarding applications to public cloud environment like AWS or GCP
- Legally authorized to work in the United States without visa sponsorship
You Have
- Strong written and verbal communication skills
- 5+ years’ experience in running scanning tools like Quays, Tenable
- 3+ years’ experience in application security scanning tools like Veracode, Synopsys
- 3+ years’ experience in implementing security controls within AWS/GCP/Azure
- Familiar with network security concepts and vulnerability assessment programs
- Experience in triaging security vulnerabilities and following incident response plans
SECURITYBRICKS, Inc. is committed to providing veteran employment opportunities to our service men and women. All applicants are subject to a background check and must be legally authorized to work in the United States without visa sponsorship.
Job Types: Full-time, Contract
Pay: $85,000.00 - $125,000.00 per year
Schedule:
- 8 hour shift
- Day shift
- Monday to Friday
Experience:
- running scanning tools: 5 years (Required)
- implementing security controls: 3 years (Required)
- triaging security vulnerabilities: 3 years (Required)
Work Location: Remote
$ads={1}
$ads={2}