Security Engineer (App Focus)
Apply NowCompany: Therap Services LLC
Location: Secaucus, NJ 07094
Description:
Therap Services - Security Engineer (App Focus)
Therap Services, the national leader in online electronic health records and documentation for people with developmental disabilities is seeking an individual to fill the position of Security Engineer (App Focus).
Primary Responsibilities:
Preferred Education/Experience:
Therap Services, the national leader in online electronic health records and documentation for people with developmental disabilities is seeking an individual to fill the position of Security Engineer (App Focus).
Primary Responsibilities:
- Develop and enhance an information security management framework
- Define security strategies, metrics, reporting mechanisms, and program services
- Assist with security technology planning, providing current knowledge and future vision of technology and systems
- Works within Secure Software Development lifecycle and development team to proactively identify and reduce vulnerabilities and exposure
- Works with external organizations to perform security testing as needed
- Collaborate with cross-functional teams to address existing or emerging security challenges
- Perform research and development on new cybersecurity tools and initiatives for proactively identifying and responding to potential security threats
- Assess risks to the company and ensure they are monitored and minimized
- Conduct real-time analysis of immediate threats, and triage when threats occur within the organization's event management platform
- Develop and collaborate in projects designed to improve the security posture of the organization
Preferred Education/Experience:
- 10+ years of related experience and/or training
- Specific experience related to cybersecurity tools such as Burp Suite, Tenable Nessus, Metasploit, OWASP Zap, Kali Linux
- Knowledge and experience with NIST standards including 800-53 and NIST cybersecurity frameworks
- Proficiency with static code analysis tools, i.e. Veracode, Chemarx, Sonarqube
- Programming experience in Java, Python, etc.
- Secure Software Development lifecycle experience
- Demonstrated collaboration with development teams to mitigate identified or emerging vulnerabilities
- Proficiency in Linux operating systems and command line interfaces such as Bash and Powershell
- Active contributions to both self-performed and third-party audits
- Information Security Certifications, e.g. CISSP, CompTIA
- Offensive Security Certifications, i.e. OSCP, SANS/GIAC