Security Test Lead Engineer
Delmock Technologies Inc
- Laurel, MD
- Permanent
- Full-time
- Present findings to bring all stakeholders to a common understanding of the security issues, risks, its impact, and remediation plan
- Perform security research, analysis, and testing via threat modeling, vulnerability assessment, source code analysis, penetration testing, and/or social engineering across different applications, platforms, and systems
- Define security testing approach and plan by working closely with Cyber, IT and developers to ensure appropriate artifacts are built into test plans
- Clearly outline and document risk impacts of test findings in reports
- Review and provide feedback all Security ELC related documents
- Provide schedule support for security activities
- Lead and coordinate post deployment scan activities
- Reports on the status of post deployment scan items from a security
- Support remediation of low/med/high security findings from post deployment scan activities
- Support Cyber security assessment activities
- Support security engineering and compliance transformation efforts as needed
- Review all code related scan outcomes and supports FDT’s with remediation of low/med/high security findings
- Reports on the status of code related security findings and the health of the application code base from a pre-launch security perspective
- Supports the Cyber Penetration Test and Code analysis team (PTCA)’s code submission process for final production code review
- Provides support to further improve the continuous security monitoring of the application code base
- Support security engineering and compliance transformation efforts as needed
- 7 years of experience with different aspects of cybersecurity, including network security, platform security, authentication/authorization systems application security, policy enforcement, and security frameworks
- Experience working with Agile methodologies