Description

The Software Security Engineer will be responsible for designing, implementing, and maintaining security measures for our software applications. This role involves identifying potential security vulnerabilities, developing strategies to mitigate risks, and ensuring compliance with industry standards and regulations.

Requirements

• Work closely with development and product teams to integrate security into the software development lifecycle (SDLC), including software designs, security tests, and code reviews.

• Ensure security is considered at every stage of the development process, from design to deployment.

• Provide guidance and best practices for application integration into cloud environment such as AWS / Azure.

• Assist in developing and enforcing a set of fundamental, sound, and secure software development processes based on established practices from NIST, OWASP, and others. (Review and Publish Release Notes)

• Collaborate with product managers to incorporate security features and enhancements into product roadmaps. Ensuring security is a key consideration in product planning and development.

• Design, implement, and operate information security programs such as Secure Software Development Program and Data Protection Program.

• Facilitate cross-functional collaboration between InfoSec, development, and product teams to address security challenges and align security goals with business objectives.

• Conduct thorough security reviews, both internal and external where necessary, of application code developed by the product and development teams.

• Identify potential security defects and recommend necessary changes to mitigate risks.

• Assess current and newly developed code for security vulnerabilities using dynamic and static analysis techniques.

• Work with software engineering teams to fix vulnerable code by providing guidance on secure coding practices and industry best practices.

• Provide expertise on authentication, entitlements, identity management (SSO), data leak prevention, data protection, encryption, etc. to developers.

• Design and implement technology and processes to reduce the potential risk of data compromise and leakage.

• Evaluate system designs from a security perspective, ensuring they adhere to best practices and compliance requirements. Provide feedback to development teams to enhance security measures.

• Participate with Incident Response events, assist in responding, minimize the impact, conducting a technical and forensic investigation, gather and preserve evidence for potential use in the prosecution of computer crimes.

• Monitor, analyze, respond to and resolve security alerts, incidents, attacks or platform issues and assist in workstation, server systems and networking triage.

• Understand and identify advanced cyber threats and provide strategies to defend against these threats.

• Provide support to Information Security team members, IT Operations and business staff as assigned and required with regards to information security activities.

• Assist with implementing and enforcing IT security policies and procedures across the organization.

• Identify, select, propose, and implement security solutions for protecting the organizations most sensitive data. Solutions may include Data Loss Prevention (DLP) systems and database monitoring and anomaly detection systems (e.g., Guardian, Imperva)

• Drive the evaluation of solutions, selection of technologies and enact strategic decisions based on established standards and existing architecture.

• Partner with MSSP, MSP and other technology vendors to implement security solutions and for those solutions maintain the software, hardware, systems making up the enterprise security stack.

• Assist with the deployment, maintenance and support of IT security systems and applications across the enterprise.

  Technology Doesn't Change the World, People Do.®

Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.

Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app (https://www.roberthalf.com/us/en/mobile-app) and get 1-tap apply, notifications of AI-matched jobs, and much more.

All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.

© 2024 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking “Apply Now,” you’re agreeing to Robert Half’s Terms of Use (https://www.roberthalf.com/us/en/terms) .