We’re looking for aDevSecOps Engineerfor an onsite role in Columbia, SC. If you’re looking for a new opportunity, apply today!
Key Responsibilities:
- Leverage your full-stack development expertise to design, implement, and maintain security tools and automation including building scripts to automate critical tasks like data security checks, vulnerability scanning, and user access control, streamlining security processes and improving overall efficiency
- Monitor security information and event management (SIEM) tools to identify potential threats and suspicious activity along with determine security gaps in these controls to improve overall security posture
- Analyze logs, investigate alerts, and use knowledge of security frameworks (NIST, CIS, CISA) to assess risk
- Support secure application development: You'll collaborate with developers to ensure secure coding practices are followed throughout the Software Development Lifecycle (SDLC) This might involve code reviews, threat modeling, and providing guidance on secure development principles
Skills & Qualifications:- 6 years of experience with:
- .NET
- C#
- JavaScript
- MSSQL
- Shell Scripting
- Visual Studio
- Azure Cloud and Virtualization
- Web - application programming interface (API)
- Exceptional communication and interpersonal skills, with a proven ability to deliver exceptional customer service through training and documentation
- Understanding of automation principles, including the use of AI, client, and scripting, to streamline security tasks
- Understanding of the Secure Development Lifecycle (SDLC) and DevSecOps principles to integrate security considerations throughout the application development process
- Proficiency in cloud security principles, including identity and access management, data security, and compliance
Education/Certifications:- Bachelor's degree in information technology systems, computer science, cybersecurity, or a related field with 3 years experience in a security focused role
- Not required, however we prioritize applicants who have:
- Certified Incident Handler (GCIH)
- Certified Computer Security Incident Handler (CSIH)
- EC-Council Certified Incident Handler (ECIH)
- EC-Council Certified Network Defender (CND)
- GIAC Critical Infrastructure Protection (GCIP)
- GIAC Defensible Security Architecture (GDSA)
The salary range for this position is $95,000 - $110,000. Actual compensation within that range will be dependent upon the individual's skills, experience, and qualifications.
TM Floyd & Company is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability.
We offer a generous array of benefits, depending on the length of assignment. We also offer a referral bonus of up to $1,000. Ask us for more details!
TM Floyd & Company participates in E-VERIFY
AAP, EEO
