| Urgent Hiring - Cybersecurity Engineer at Chicago, IL (Hybrid) - Contract at Chicago, Illinois, USA |
| Email: [email protected] |
|
From: Vishal Srivastav, Dataquad Inc. [email protected] Reply to: [email protected] Title: Cybersecurity Engineer Location: Chicago Hybrid Visa: H1B, USC, H4 Ead Interview: Virtual We are looking for a Cyber Security Engineer to join the Security team of Cat Digital and build software solutions that drive automation and security into the application development lifecycle. You will have deep integration with applications as they move from an idea into a solution, integrating Security and DevOps practices and enabling delivery for Caterpillar Digital Applications. Be a part of the team that is using innovative solutions and methods to securely enable, build, and deploy modern applications and software. Positions Contributions to Work Group: As a Senior Application Security Engineer, you will work as a technical leader within a portfolio of related applications to guide software engineers on cybersecurity issues, influence security and prioritization decisions at the bug or story level and act a trusted partner in their mission to deliver solutions securely. Typical task breakdown: You will be responsible for delivering a suite of security services according to internal processes and standards, including: Security Defect Management - Analyzing, validating, communicating, and consulting on security defects identified by both automated and manual sources such as CodeQL, Rapid7 Web Application Security, penetration testing, bug bounty, etc. (The security engineers are partners to software engineers who require accurate information on why a vulnerability exists and what they can do about it.) Tool Enablement - Enabling and monitoring automated defect detection tooling (CodeQL, Rapid7, etc.) at the repository or application level according to established process. Security Test Onboarding & Management Collecting and communicating required scope and access information for penetration testing and security assurance assessments, as well as handling the output of these assessments via our Defect Management Process. Maturity Measurement Consulting with software engineers on practices which will improve their applications security maturity according to scorecards and maturity models. Correction of Error Authoring, in close partnership with software engineers, correction of error reports which help engineers and architects across avoid similar mistakes in their own applications. Technical Skills 5+ years of experience as a software engineer (in any language or framework) 5+ years of experience as a software development-focused cybersecurity professional 5+ years of experience working on a major cloud platform (AWS, Azure, GCP, or Salesforce) as a software engineer, cloud/DevOps engineer, security engineer, or architect. Experience analyzing and remediating security findings from automated and manual sources such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), penetration testing, Software Composition Analysis (SCA), etc. Experience leveraging one or more of the following resources to support secure coding and decision-making: OWASP Top 10, MITRE Common Weakness Enumeration (CWE) Top 25, OWASP Application Security Verification Standard (ASVS) and Other industry-standard best practice guides or frameworks Experience building or supporting web applications and APIs including Single Page Applications (SPA) and RESTful APIs. Proficiency in one or more programming languages. Decision-Making Ability Our engineers make sound, justifiable, customer-first decisions to determine which security issues to raise to software engineers/leaders and support work prioritization decisions. Strong Communication Our engineers relate complex technical concepts to non-technical audiences and technical audiences without a security background. Additionally, the Cat Digital team spans the globe, and our engineers must collaborate effectively with engineers from several locations and cultural backgrounds. Active Participation Software engineering is not a spectator sport. The input and experience our engineers bring to the table are valued and should be shared freely. Similarly, engineers are relied upon to complete complex assignments at a high level of quality with limited supervision. Regards, Vishal Srivastav Dataquad Inc Direct: 832-940-7073 Ext (249) 2000 S Dairy Ashford Rd, Suite#405, Houston, TX, 77077 [email protected] |www.dataqinc.com Keywords: information technology Texas Urgent Hiring - Cybersecurity Engineer at Chicago, IL (Hybrid) - Contract [email protected] |
| [email protected] View All |
| 04:31 AM 28-Feb-25 |