Software Engineer - Security

Software Engineer - Security

Job Summary: Talent Software Services is in search of a Software Engineer - Security for a contract position in Redmond, WA. The opportunity will be three months with a strong chance for a long-term extension.

Position Summary:

We are seeking a highly experienced resource with expertise in Software Application Security, FISMA, FedRAMP, ITAR, CUI, and CMMC. The candidate will work closely with the internal team to ensure that all software applications meet the highest security standards and comply with all relevant regulations and standards. The candidate will also be responsible for software analysis, developing and implementing security policies and procedures, and conducting risk assessments.

Primary Responsibilities/Accountabilities:

• Perform software review and analysis. Leverage a deep understanding of Windows registry, networking/firewall, the DNS protocol, and client functionality, and proficiency with various software analysis tools.
• Ensure that all software applications meet the highest security standards and comply with all relevant regulations and standards, including FISMA, FedRAMP, ITAR, CUI, and CMMC.
• Work closely with the development team to identify and mitigate security vulnerabilities in software applications.
• Research current practices and develop and implement security policies and procedures for factory security procedures.
• Conduct risk assessments and recommend security enhancements to reduce risk.
• Solid understanding of cloud Identity Management technologies (RBAC, PIM, JIT, LPA).
• Experience with cloud policy management.

Qualifications:

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
• At least 7 years of experience in software application security, with a focus on FISMA, FedRAMP, ITAR, CUI, and CMMC.
• Experience with secure coding practices and software development lifecycle.
• Experience with software analysis tools such as procmon, procexp, sigcheck, regmon, fiddler. Familiarity with authenticode and digital signatures. Packet capture and analysis.
• Strong understanding of security technologies, including firewalls, intrusion detection and prevention systems, and vulnerability scanners.
• Excellent communication skills, with the ability to communicate effectively with technical and non-technical stakeholders.
• Strong problem-solving and analytical skills.
• Relevant industry certifications such as CISSP, CISM, or GIAC.
• Years of Experience Required: 5 overall years of experience in the field.
• Degrees or certifications required: It would be beneficial if the candidate has a technical degree and/or a security certification such as CISSP or Security.
• Best vs. Average: The ideal resume would contain:
  • Detailed security knowledge, including experience in identity management and role-based access control.
  • Experience with cloud systems.
  • A strong background in security practices.
  • Experience in conducting security reviews and software analysis.
• Performance Indicators: Performance will be assessed based on feedback from clients and the teams the candidate will be working with and the quality and completion of the work assigned to the candidate.
• Minimum 5 years experience with Cloud systems
• Minimum 5 years experience with a solid understanding of security practices
• Minimum 5 years experience with scripting languages like PowerShell

If this job is a match for your background, we would be honored to receive your application!

Providing consulting opportunities to TALENTed people since 1987, we offer a host of opportunities including contract, contract to hire and permanent placement. Let's talk!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.