Software Security Engineer (Only USC/ w2)

Position Title: Software Security Engineer

Visa: USC only

Only w2 candidates can apply for this role.

Job Description:

The overall responsibility of the Software Security Engineer is to implement, test, and operate advanced software security techniques in compliance with technical reference architecture. Perform on-going security testing and code review to improve software security. Troubleshoot and debug issues that arise. Provide engineering designs for new software solutions to help mitigate security vulnerabilities. Contribute to all levels of the architecture. Maintain technical documentation. Consult team members on secure coding practices. Develop and maintain familiarity with new tools and best practices. Engineer and implement DevOpsSec (CI/CD) pipelines and incorporate security protocols while deploying infrastructure as code (IaC).

Required Skills/Experience:

Bachelor’s degree in science, technology, engineering, and math (STEM) field and nine (9) years IT security (Cybersecurity) experience; OR No Bachelor’s Degree with eleven (11) or more years of IT security (Cybersecurity) experience.

Desired Skills/Experience:

• Experience can be considered in lieu of degree.

• 5 years technical leadership experience.

• Certified Information Systems Security Professional (CISSP), or Certified Secure Software Lifecycle Professional (CSSLP) Certification, or Certified Application Security Engineer (CASE) Certification.

• AWS Certified Solutions Architect Professional or AWS Certified DevOps Engineer Professional.

• Experience with DevSecOps pipeline tools including configuration management, requirements (e.g. JIRA), automated testing, automated deployments, blue green deployments, and branching strategy and implementation.

• Familiarity with Systems Engineering processes and milestones; understanding of the requirements analysis, decomposition, and allocation process.

• Experience with performing Security Control Assessment in compliance with NIST