What are the responsibilities and job description for the senior IT Security Engineer position at Kodi Inc?
Job Details
Seeking a senior IT Security Engineer who will support the team by leading major security initiatives, implementations, and integrations. Drive application and infrastructure security within multiple platforms to minimize application vulnerabilities and application risk:
Interview: Teams
Location: Columbus, OH
Posting: 761253
Work: ON-SITE
Role and Experience
- Security Integration: Integrate security as an integral part of the CI/CD pipeline, automating security testing and scanning processes.
- Vulnerability Management: Identify, assess, and manage security vulnerabilities throughout the SDLC.
- Security Automation: Implement and maintain security automation tools and scripts to streamline security processes.
- Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to identify potential security vulnerabilities.
- Security Policy and Compliance: Enforce security policies and ensure compliance with agency policies and relevant regulations and standards.
- Collaboration: Work closely with other IT teams and stakeholders to ensure security best practices are followed.
- Incident Response: Participate in security incident response and recovery efforts.
- Continuous Improvement: Continuously improve security practices and tools based on industry best practices and emerging threats.
- Documentation: Document security processes, procedures, and findings.
- Proficient in using vulnerability management tools (Qualys)
- Proficient in using security scanning tools (Checkmarx, Digitsec)
- Proficient in using DevOps platforms (Azure DevOps, Copado)
- Proficient in using Cloud platforms (Salesforce)
- Hands-on experience with frameworks and programming languages (Apex,.Net)
- Hands-on experience with operating systems (Windows, Linux)
- Working knowledge of security frameworks and standards (FIPS 199, OWASP Top10, SANS 25, NIST, etc.)
Desired
- CompTIA Security Certification
- Salesforce Certified Administrator
- Working knowledge of web application security tools (F5 WAF)
- Working knowledge of SIEM/SOAR tools (Google Chronicle)
- Working knowledge of integration platforms (ServiceNow, MuleSoft)
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
