Remote Cybersecurity Specialist | Adeptus Solutions, Inc

885 IT & Software Developer jobs in the US

Company Size

<50

Company Type

Services

Exp Level

Regular

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Over 3 years of relevant experience in vulnerability management, web application penetration testing, and/or application security consulting is essential for consideration. - Security+ certification is mandatory. Having additional credentials like Certified Secure Software Lifecycle Professional (CSSLP), Certified Information Systems Security Professional (CISSP), CompTIA Advanced Security Practitioner (CASP+), Offensive Security Certified Practitioner (OSCP), and/or AWS Cloud Administrator certification is advantageous. - Proficiency in Static and Dynamic Application Security Testing (SAST/DAST) is required. - Familiarity with MicroFocus Fortify static code analysis scans is preferable. - Strong analytical skills in security system analysis along with a solid understanding of Cyber and IT security risks, threats, prevention techniques, and security best practices. - Comprehensive knowledge of web technologies, including web applications, web services, and service-oriented architectures, plus associated network/web protocols. - Experience with cloud security practices and architectures, particularly with Azure and AWS, is desirable. - Knowledge of Federal Governance, Risk Management, Compliance tools, and content like vulnerability scanning and penetration tools, SCAP/STIG, Microfocus Fortify, SonarQube, Checkmarx, Qualys, BurpSuite, and Nessus/Tenable is preferred. - Solid grasp of federal information security processes, frameworks, standards, and regulations. - In-depth understanding of networking, network security, cloud security, and network monitoring solutions. - Experience in guiding compliant technologies, architectures, and solutions is beneficial. - Familiarity with Federal Governance, Risk Management, and Compliance tools such as eMASS, STIG, Nessus/Tenable, etc., is advantageous. - Experience aiding customers in Federal Government and/or adhering to industry-specific cybersecurity compliance and regulatory standards/frameworks (e.g., OWASP Top 10, NIST 800-53, etc.) is preferred. - Demonstrated experience in writing and formulating application security policies, procedures, standards, and guidelines. - Ability to multitask and efficiently support a cross-matrixed team while managing multiple client projects and internal team functions. - Capable of solving intricate information security challenges and offering strategic and pragmatic solutions to both the team and clients.

Technologies

OWASP

ASP.NET

Responsibilities

- I will provide critical support for both federal and non-federal information systems as a Cybersecurity Engineer, focusing on application security testing and secure web architecture design. - I will efficiently develop automated test scripts for various user stories across multiple products. - I will lead and support testing web applications and APIs for vulnerabilities such as SQL injections and Cross-Site Scripting, among other threats. - I will conduct Static Application Security Testing (SAST) for designated systems and deliver results to relevant project stakeholders. - I will collaborate with application developers to review and address false positives arising from application security assessments. - I will offer consultation to developer teams on various mitigation and remediation strategies. - I will undertake both manual and automated Dynamic Application Security Testing (DAST) for assigned systems and compile findings for relevant stakeholders. - I will assist in creating security and risk reports along with accompanying documentation. - I will develop and sustain application security and compliance documentation, including Application Configuration Guides and Secure Coding Guidelines. - I will provide subject matter expert (SME) input during cybersecurity incidents, assisting in incident triage, remediation, and root cause analysis. - I will ensure all security-related software development lifecycle documentation meets the determined security requirements. - I will apply the latest Application Security and Development Security Technical Implementation Guide (STIG) and ensure it’s accurately documented. - I will conduct threat modeling exercises using established methodologies to identify potential attack vectors within the application architecture. - I will assist System Owners, Information Owners, ISSOs, and ISSMs in documenting known security weaknesses of assigned applications according to US Army policy and procedures. - I will assess changes in applications that might influence security controls, perform security impact assessments of suggested changes, report alterations in risk posture, and provide risk mitigation recommendations. - I will complete all mandatory annual specialized information security training. - I will attend meetings on behalf of our clients, contributing security-related insights regarding applications.

Description

- A BA/BS degree is required. - Our company, Adeptus Solutions, Inc., is an Equal Opportunity Employer. - This is a full-time position with an annual salary ranging from $129,935.91 to $181,621.75. - We offer a comprehensive benefits package, including dental insurance, health insurance, paid time off, and tuition reimbursement. - Security clearance at the Confidential level is necessary. - This position allows for remote work.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USRemote Security Engineer jobs

You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 885 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

Sperasoft, Bain Magique, Archon Systems Inc, Journey Freight International inc, Puter Technologies Inc., Ontario One Call, HAPLY Robotics Inc. among others, are currently hiring for Security roles in the United States.

The company with most openings is Leidos as they are hiring for 88 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.