| Senior Product Security Engineer at Lake Forest, CA Onsite at Lake Forest, California, USA |
| Email: [email protected] |
| From: Subhash Tamta, Convextech.inc [email protected] Reply to: [email protected] Title: Senior Product Security Engineer Location: Lake Forest, CA (Onsite, C2H) MOI: Video Visa: No H1B/CPT Job Description Plan, implement, upgrade, or monitor security measures for the protection of their networks and sensitive patient health information/personal information that is residing in those networks. Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies. Build strong collaboration with cross-functional stakeholders and teams across the product development lifecycle. Build, deploy, and manage security tools and service Design and implement scalable processes to provision cloud access Evaluate and respond to alerts and events from security tools Develop event response documentation and processes, including diagrams for system environments, cloud operations, and security tools Collaborate with security leadership, engineering, and compliance to execute security strategies Assist other teams in solving security issues in a manner that complies with business requirements and best practices JOB FUNCTIONS Essential Functions Duties are listed in order of greatest importance. Other responsibilities may be assigned. 1. Perform Product Security Process (APSP) for all the Software as a Medical Device products. 2. Perform risk analysis of in development products; document and score findings, work with development teams to prioritize and reduce overall risks. 3. Create SBOM's from tools and scripts and communicate results and remediations to development teams. 4. Implement security improvements by assessing current architecture design, evaluating design trade off and proposing security solutions and requirements. 5. Prepare software for SAST, DAST, and fuzzing scans; review, document results, provide security fixes for software considerations. 6. Safeguard information system assets by identifying and solving potential and actual security problems. 7. Perform or support penetration tests which includes creating or reviewing security pentesting reports. 8. Review security updates for possible negative affects against Software as Medical Device products and monitor for new vulnerabilities. QUALIFICATIONS Minimum Requirement 1. BS of Computer Science or other related discipline with 7 years of relevant experience. 2. .NET development, C#, Scripting for Microsoft development environment, such as PowerShell, (C++ is a plus) 3. Solid understanding of Window OS services, processes, driver and registry configurations and analysis techniques 4. Experience with Windows and Linux cybersecurity configurations. 5. Experience with the following types of tools: SAST, DAST, SBOM, network forensics tools, fuzzing, standard penetration test tools. 6. Knowledge of networking and cybersecurity concepts. 7. Experience with Microsoft Visual Studios, ADO, or other integrated development environment (IDE) tool is a plus. 8. Ability to work independently, proactively identify issues, recommend and implement solutions and deliver quality results on schedule while managing multiple tasks and internal customers. 9. Understanding of Software Development Lifecycle Management (SDLC) (Agile/Scrum, iterative) 10. Good interpersonal & Communication skills to build positive departmental and inter-departmental relationships in a virtual, remote, and asynchronous environment. Skill: security, Information security, Cyber security, Cloud, Security architecture, Siem, AWS, Vulnerability management, Incident response Top Skills Details: Security, Information security, Cyber security, Cloud, Security architecture, Siem, AWS, Vulnerability management, Incident response Thanks and Regards SUBHASH TAMTA US IT Recruiter |Convex Tech Inc. Email : [email protected] Keywords: cplusplus csharp information technology California Senior Product Security Engineer at Lake Forest, CA Onsite [email protected] |
| [email protected] View all |
| Wed Aug 07 19:48:00 UTC 2024 |