IT Security Engineer

Advent Global Solutions (AGS) is a leading global IT services company, specialized in delivering enterprise software solutions, IT consulting & outsourcing services, and product engineering solutions. Advent Global’s commitment to deliver IT services is backed by 1,000+ employees and preferred partnerships with companies like SAP, Oracle, Sybase, and IBM

Role: IT Security Engineer

Location: Cincinnati, OH

Duration: 12 months

Need 10+ years consultant

Key Responsibilities:

• Minimum 10+ years of IT security experience that includes proven IT Security risk assessments and audits, information risk management and assessment development
• Minimum 10+ years of on-site working experience in the US
• Minimum of 2 years of experience with any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security.
• Intermediate knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security.
• 3+ years of experience in Web development and web technologies like HTTP, HTML, CSS, and JSPs.
• 3+ years of experience in microservice development, Node.js preferred or java springboard
• 2+ years of experience in continuous integration, continuous delivery and deployment automation
• 2+ years of experience in secure software development and deployment
• Intermediate knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security.
• Contributes to the design, engineering and implementation of systems infrastructure.
• Ability to execute in an agile driven environment
• Applies proven communication, analytical and problem-solving skills to identify, communicate and resolve issues.
• Application security reviews * Application Penetration testing * Projects and research work as needed * Security training and outreach to internal development teams * Security guidance documentation * Security tool development * Security metrics delivery and improvements
• Conduct deep code reviews and find design flaws, and think long-term about driving down operational cost
• Solve problems at their root, stepping back to understand the broader context, and implementing fixes to ensure that discovered issues are not repeated
• Stay abreast of new techniques, tools and methodologies used to solve cloud security problems
• Experience understanding Common Vulnerabilities and Exposures (CVE) and Web Application Security – OWASP Top 10
• Requirements analysis, definition, and refinement
• Secure and assured systems engineering
• Hands on software engineering and development
• Mobile computing platform application development
• Application of Information Security Principals
• Must have experience in the Assessment of security risk, Big data and analytics, Reverse engineering and Malware analysis
• Software innovation and technology insertion
• Use of database technologies such as Oracle, MySQL, or SQL-based equivalents, as well as NoSQL-based databases such as Mongo DB
• Use Software Configuration Management tools
• Understanding of Software Development Life Cycle (SDLC) processes
• Support Test Engineering during formal testing phase of the project
• Represents the organization in providing solutions to difficult technical issues associated with specific projects
• Supports project developing solutions for Modernization and Sustainment tasks
• Must have Agile and DevOps Experience
• Bachelor’s Degree or equivalent education and experience required.
• Security and/or risk-related certifications preferred but not required (CISSP, CSSLP, GEWB, CASS, CISA, CRISC, C-WAST)
• Proven analytical skills to identify and analyze security requirements and relate them to appropriate security policies, standards and/or controls in order to determine associated risk.
• Ensure that technical solutions effectively meet and support business needs. Proven ability to handle and prioritize multiple assignments, often within limited time constraints.
• The ability to interact with internal and external personnel at all organizational levels. Therefore, the candidate must have the ability to influence others across a matrix organizational structure
• Proven strong written and verbal communication skills are a requirement; both within the organization and with external partners and vendors.
• The ability to work independently and as a self-starter.

All your information will be kept confidential according to EEO guidelines.