We have a AAA gaming client in the Seattle, Washington area that is looking for an experienced Security Software Engineer. This is a contracting position and is expected to last 12 to 18 months.
The hired candidate will be required to work “onsite” at the client’s office location, this is not a work from home or remote job.
The hired candidate should have experience managing software assets and will be working on securing the software supply chain.
Audit and access software asset inventory and usage.
Review and implement security controls based on penetration testing and vulnerability analysis.
Formulate and update software security assessments and questionnaires.
Build and automate software asset management technical procedures.
Security patching and software updates and reporting where needed.
Qualifications and Skills
Candidates should have knowledge of risk assessment methodologies such as FAIR, OCTAVE, NIST RMF.
Must have experience managing and evaluating risks, threats, vulnerabilities to critical assets.
Experience in penetration testing and vulnerability analysis.
Knowledge of common application architectures.
Understanding of open source and software supply chain with security considerations.
Familiarity with software security assessments and questionnaires.
Scripting experience required such as PowerShell.
Blackbox Application Security testing.
IT Security Certification such as CISSP or GIAC GSEC required.
Excellent communication and interpersonal skills; detail-oriented, problem solver with strong initiative.