Sr. Security Automation Engineer
Apply NowCompany: Avani Technology Solutions, Inc.
Location: Portland, OR 97229
Description:
Job Requirements
What client is Looking For:
To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has in-depth experience and clearly demonstrates these skills:
- Agile development & maintenance of automation script/tools to scale the attack surface management's work across the enterprise organization
- Design, deploy and maintain automated configuration as code deployment of vulnerability assessment scanners & agents to cloud environments
- Develop custom platform integrations, data correlation and processing strategies to reduce false positives, leverage asset meta data for context and align data against Nike remediation policies
- Be the Subject Matter Expert (SME) for deployment & management of integrations of various security vulnerability assessment tools
- Assist technology community to effectively utilize the tools and remediate findings identified
- Assist with maintaining various pipeline integration of security tools into development SDLCs
- Effectively communicate complex technical issues simply to different audiences
- Ability to quickly learn new Information Security concepts and adapt to a fast-paced, ever changing organization
- Working cross functionally with multiple teams on establishing new processes and improving existing security across the platform
What client is Looking For:
To make it clear, we're not looking for just anyone. We're looking for someone special, someone who has in-depth experience and clearly demonstrates these skills:
- BS or MS degree preferred in computer science, information assurance or equivalent experience
- Expertise in interpreted languages (Python, Javascript) and compiled languages (Java, .Net) with full-stack development experience.
- Software development background and strong knowledge of software development lifecycles
- Previous experience deploying and maintaining configuration as code systems, services, containers and applications in AWS, Azure and/or GCP
- Hands on & automation experience with security toolsets such as vulnerability scanners (Nessus, Nexpose, Qualys), Dynamic Web application Scanners (WebInspect, AppSpider, Whitehat, Veracode) is preferred
- Experience in Application Security, administering web-based applications and servers
- Ability to develop and communicate recommendations to management
- Strong problem-solving and conceptual thinking abilities