ClientSolv Technologies is an IT solution firm with over a decade of experience serving Fortune 1000 companies, public sector and small to medium sized companies. ClientSolv Technologies is a woman-owned and operated company that is certified as a WMBE, 8a firm by the Federal government's Small Business Administration.
Job Description
We are seeking a Senior Security Engineer for a contract-to-hire opportunity in downtown Denver, CO. In this role, you will be supporting the organization’s efforts to identify and remediate application security risks, evangelize security best practices, and help educate the larger engineering team on security fundamentals. You will work with various teams (Software, Architecture, DevOps, Quality and more..) to support IT Security at all levels.
Additional Responsibilities
Analyze user requirements to develop secure software design and architectural requirements.Assist in supporting the software developed IT engineering group.Create and maintain documentation describing system architecture and security controls.Provide hands on code-level help to the engineering team mitigate discovered vulnerabilities in a timely manner.Review static analysis results and provide remediation guidance when needed.Define environment-specific security best practices and integrate them with our coding standards library and application playbooks.Work with the larger IT Security group to help support their initiatives within the rest of the IT organization.Build security scanning and validation into our automated pipelines to help drive a DevOps to DevSecOps transformation across the engineering team.Qualifications 5+ years of application security and secure coding experience in large scale environments. Thorough understanding of the OWASP Top 10 and SANS / CWE Top 25 coding standards.Significant experience with securing and integrating with cloud-based managed servicesProven ability to improve security posture in existing legacy applications as well as define greenfield application security strategies.Experience developing or supporting internet-facing web applications or services.Solid understanding of security concepts and secure coding techniques. Experience using static analysis tools such as WhiteHat, Fortify or CheckMarx.Ability to align and/or prioritize security goals with business goals.BS/MS in Computer Science (or equivalent experience)Technical aptitude and critical thinking skills, the ability to come up with creative outside-of-the-box solutions. Strong written and verbal communication skills – including the ability to translate the impact of complex security risks/concerns to the senior IT executive leadership team.Understanding of US regulations and data-protection guidelines and standards.Some leadership experience (getting projects/tasks done leading a small team) CSSLP, CISSP, CISM or other relevant information security industry certification preferred.Additional InformationThis contract-to-hire opportunity will be located in (downtwon) Denver, CO.