IT Job Search

Your Future Starts Now.

The Internet will only get you so far. Our recruiting specialists are on the inside of the IT job market in the San Francisco Bay Area, Portland and Seattle—and they can help you access open positions you might otherwise not even know about.

Explore our IT jobs in the San Francisco Bay Area, Portland and Seattle now:

Vulnerability Automation Engineer (8228300)
Job Order #14457
Portland-Vancouver-Beaverton, Oregon - Added May 8, 2018

Full Description:

As a Senior Security Engineer your role on the team will be focused on the automation and integration of security vulnerability assessment systems to drive accountability & visibility of our client's high risk findings. Sources of data will be from network vulnerability, dynamic web application, static code analysis and mobile application security tool suites. You will work with technical and business teams to understand customer use cases for remediation of the vulnerabilities and provide solutions to create self-service visibility into security findings for mitigation. You will also drive to improve application security practices, interact with development teams and focus on improving overall application quality.  

Job Requirements
• Developing automation script/tools to scale out the vulnerability management team’s work across the organization
• Subject Matter Expert for deployment & management of various security vulnerability assessment tools.
• Develop custom platform integrations, data correlation and processing strategies to reduce false positives and align data against our client's remediation policies
• Educate Engineers, developers and Product teams on the importance of Application Security, along with the services ability to assist them to be successful
• Assisting developer community to effectively utilize the tools and remediate findings identified
• Assist with maintaining pipeline integration of security tools into various development SDLCs
• Continually evaluate the current Application Security Program; work with the team to grow the program and develop future roadmap
• Communicate complex technical issues simply to different audiences
• Ability to quickly learn new Information Security concepts and adapt to a fast-paced, ever changing organization
• Working cross functionally with multiple teams on establishing new processes and improving existing security across the platform

What We're Looking For:
To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has in-depth experience and clearly demonstrates these skills:
• BS or MS degree preferred in computer science, information assurance
• Expertise in both interpreted languages (Python, Javascript) and high level languages (Java, .Net) with full-stack development experience
• Software development background and strong knowledge of software development lifecycles
• Experience in Application Security, Applied Cryptographic Protocols and administering web-based applications and servers
• Experience with security toolsets such as network vulnerability scanners (Nessus, Nexpose, Qualys), Dynamic Web application Scanners (WebInspect, AppSpider, Whitehat, Veracode), Static Code Analysis (Fortify, Veracode) and component lifecycle management tools (Sonotype, Blackduck)
• Ability to develop and communicate recommendations to management
• Ability to translate technical security vulnerabilities into business risk
• Strong problem-solving and conceptual thinking abilities
• Strong ability to reverse engineer tools, exploits and open source applications and ability to develop them
• Experience looking for application security vulnerabilities such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc.
• In-depth familiarity with Windows and Unix Operating Systems

Apply for Vulnerability Automation Engineer (8228300)

Fill out the form below to submit your information for this opportunity. Please upload your resume as a doc, pdf, rtf or txt file. Your information will be processed as soon as possible.


Return to IT Job Search


WHAT OUR CLIENTS ARE SAYING

“Mainz Brady Group, during the time I was on the contract, kept in contact with both sides to make sure the contract was going smoothly. The folks at Mainz Brady Group are great; this is the third time I have had a great contract with his company, starting in 1994. If I were looking for work right now they’re who I’d call first.”

More Testimonials

Deprecated: Directive 'allow_call_time_pass_reference' is no longer available in PHP in Unknown on line 0

Deprecated: Directive 'magic_quotes_gpc' is no longer available in PHP in Unknown on line 0

Deprecated: Directive 'register_globals' is no longer available in PHP in Unknown on line 0