Fulltime Network Security Engineer openings in Los Angeles on September 18, 2022

Network Security Engineer at NBCUniversal

Location: Los Angeles

Job Description
Company Description

Job Description

Join NBCUniversal Cyber Security and help us design and implement network security products and services that enable and protect the experience of our businesses.

This role is a part of the Network Security Engineering team, responsible for network security technology that supports the entire NBCUniversal enterprise. You’ll be responsible for design and engineering of network security services that provide visibility and defend the network at all layers.

You’ll:
• Provide secure design, engineering guidance, support and fulfil new business requests for network tools and services including WAF, DNS, Email and Internet egress
• Improve tooling utilized to manage web application firewall rules sets and ensure that WAF policies reflect the risk reduction goals of the organization.
• Participate in On-call rotation to provide off-hours support for critical systems
• Design network security services to address security vulnerabilities and weaknesses.
• Develop automation to simplify network security policy administration.
• Work to improve adjacent network services like DNS, DHCP, IPAM, SMTP and PKI.
• Conduct security reviews of network services to drive appropriate risk reduction and best practice standards for network security controls.

You need:
• A deep understanding of network security principles and how to apply them.
• Experience developing and implementing application security, DDoS, Bot Protection, and other Cloud Edge Security services across an enterprise
• A thirst for improvement and an inclination to thoughtfully challenge the status quo
• Desire to try things and iterate on them, fail fast, and focus on functionality that matters
• Analyze HTTP/HTTPS traffic via web application firewall log data for potential issues from malicious attacks or false positives
• Hands-on experience configuring Cloudflare, Akamaki, F5 or Azure Web Application firewalls
• Basic experience/knowledge on managing and troubleshooting on DNS, DHCP & IPAM (DDI) protocols and security (DNS and DHCP concepts, IPAM, IP addressing, VLANs). Infoblox experience a plus
• Excellent problem solving and troubleshooting skills, an ability to use various data collection tools and methodologies to analyze problems, determine root cause and develop solutions.
• Experience with development technologies: Git (Bitbucket or GitHub), Terraform, Ansible
• Experience with Request Spoofing Tools (Postman, Modify Headers for Google Chrome, jmeter, etc.)
• Strong knowledge/hands on experience with Python, JavaScript, Bash and APIs
• Practical experience with secure development techniques and patterns across diverse platforms (ex: OWASP top 10, OWASP API Security, CWE top 25 etc.)

Bonus points for:
• Experience with Email Authentication, including implementing policies for SPF, DMARC and DKIM
• Experience with AWS Lambda, Cloudflare Workers, Google Cloud Functions, or a similar distributed computing platform is preferred.
• Experience with Palo Alto Networks firewalls, highly segmented and transient networks, or extreme high-performance network environments such as broadcast or research networks.
• Experience with project management/workflow tools and concepts such as Jira, Agile, Scrum/Kanban etc.
• Comfortable with scripting or software development.
Additional Information

NBCUniversal’s policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations in the US by calling 1-818-777-4107 and in the UK by calling +44 2036185726.
Apply Here
For Remote Network Security Engineer roles, visit Remote Network Security Engineer Roles

********

Nuclear Cyber Security Engineer – SMRs – REMOTE at GSE Solutions

Location: Los Angeles

We are supporting one of the key players in the SMR (small modular reactor) market. They are seeking a Nuclear Cyber Security Engineer to support the design development for advanced Gen IV reactors. Can work 100% remote. 1 year+ contract.

Responsibilities
• Assisting in the successful implementation of licensing actions associated with Cyber Security Programs.
• Coordinating with design personnel to ensure new designs and design changes meet cyber security regulatory requirements.
• Preparing, reviewing, and maintaining licensing documentation in compliance with Cyber Security Design Programs, regulations and strict quality assurance standards.
• Interfacing with technical discipline team partners and contractors.
• Preparing and reviewing technical material prepared by themselves and others.
• Reviewing correspondence to and from the Nuclear Regulatory Commission.
• Assisting with safety analysis report (SAR) revisions and preparation.
• Preparing or reviewing cyber security regulatory evaluations.

Required Qualifications and Skills
• Bachelor’s degree in engineering from an accredited, four-year university or equivalent experience.
• 10 years applicable experience in development and implementation of nuclear Cyber Security Programs demonstrating knowledge and compliance with:
• US NRC 10 CFR Regulations.
• US NRC and Nuclear Energy Institute guidance related to 10CFR regulations implementation.
• Experience with developing nuclear cyber security program implementation strategies, program procedures, and network design.
• Experience with the incorporating cyber security into digital system designs.
• Awareness and current knowledge of trends and nuclear industry activities related cyber security program implementation.
• Capability and willingness to adhere to strict quality assurance standards.
• Self-Starter with ability to manage deadlines
• Proficient in MS Office Suite (Word, PowerPoint, Outlook, Excel) and Adobe Professional.
• Experience in interactions with the Nuclear Regulatory Commission staff.
• Project management and project management tools experience with the capability and willingness to assume full responsibility for a project task
• Excellent written and oral English skills.
• The successful candidate will possess a high degree of trust and integrity, communicate openly and display respect and a desire to foster teamwork.
Apply Here
For Remote Nuclear Cyber Security Engineer – SMRs – REMOTE roles, visit Remote Nuclear Cyber Security Engineer – SMRs – REMOTE Roles

********

Cyber Security Engineer (Remote) at NBCUniversal

Location: Universal City

Job Description
Join NBCUniversal Cyber Security and accelerate our security engineering by building an approach, tools, and documentation for our cyber infrastructure automation.
This role is a part of the Cyber Security Engineering team, responsible for security technology that supports the entire NBCUniversal enterprise. You’ll be responsible for identifying key processes around the sustainability and availability of our security products and working to support and automate proactive approaches for deployment and optimizations of security toolsets.
You’ll:
• Establish, sustain, and improve highly-available, secure, and scalable foundations for core on-premise and cloud security services
• Develop tooling for configuration management, containerization, and secrets management with a DevOps agile approach
• Partner with security Service Owners and Architects to build new platforms and migrate existing security tools to be automated for on-prem and cloud-delivered solutions – reduce friction and enable self-service as much as possible
• Provide documentation and resources to enable other technologists to leverage new tooling and architectures
• Identify repeatable processes around operational tasks for deploying and managing security tools to target for automation
• Look at problems pragmatically to provide insight, ideas and help set priorities on how to execute accordingly
• Provide secure design and engineering guidance for enterprise security solution.
• Provide excellent support and service to other teams that rely on our services – help share knowledge, and assist in creation and management of alerts, reports and other knowledge objects.
• Participate in an on-call rotation for support of systems outside of normal business hours, and be available to perform maintenance and critical operations as needed

You need:
• An understanding of IT security principles and how to apply them.
• Experience with CI/CD technologies such as Jenkins, Ansible and Github
• A thirst for improvement and an inclination to thoughtfully challenge the status quo
• Desire to try things and iterate on them, fail fast, and focus on functionality that matters
• Eagerness for learn new security tools/services to support broadening portfolio.
• Leverage data to drive design and risk decisions using various sources and basic analytics to create clear metrics and reports.
• Highly collaborative; personally, and professionally self-aware; able to and interested in interacting with employees at all levels; embody integrity; and represent and inspire the highest ethical standards
• 3-5 years of experience administrating security tools.

Bonus points for:
• A clear understanding of securing infrastructure in AWS, Azure or Google Cloud.
• Experience in managing IT security endpoint solutions i.e., Crowdstrike, Airlock
• Advanced-level knowledge and experience with scripting in one or more languages, ideally Python

Additional Information
NBCUniversal’s policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations in the US by calling 1-818-777-4107 and in the UK by calling +44 2036185726.
Apply Here
For Remote Cyber Security Engineer (Remote) roles, visit Remote Cyber Security Engineer (Remote) Roles

********

Security Engineer, Client Operations at FOX

Location: Los Angeles

OVERVIEW OF THE COMPANYFox CorporationUnder the FOX banner, we produce and distribute content through some of the world’s leading and most valued brands, including: FOX News, FOX Sports, the Fox Network, and the FOX Television Stations. We empower a diverse range of creators to imagine and develop culturally significant content, while building an organization that thrives on creative ideas, operational expertise and strategic thinking.JOB DESCRIPTION

The ‘New’ Fox Corporation Information Security team drives security initiatives across all of Fox’s US based businesses, including Fox Broadcasting Corporation, Fox Sports (FS1 & FS2), Fox Business and Fox News. Fox is one of the nations largest broadcast groups and premier sports brands, and our newly formed Fox Corporation is heavily focused on producing high-quality live events and high volume direct to consumer digital distribution.

ABOUT YOU
• You’ve done this before; you’ve spent at least 5 years in a technology support role
• You have the ability to simplify complex technology topics and communicate them clearly with less technical audiences
• You’re able to maintain confidentiality and privacy in all dealings with executive teams
• You can deal with change; you’re able to change direction as production priorities shift. You can dig into the details, are able to context switch, and stay focused on the most relevant issues of the moment
• You know what you know, and want to learn what you don’t; you’re a continuous learner and eager to take on new challenges, become an expert, and empower others with your own knowledge and experiences

A SNAPSHOT OF YOUR RESPONSIBILITIES
• Work in lock step with our client side technology team
• Provide cyber security support for both the executive support team as well as direct cyber security support for the top executives in the organization
• Evaluate new technologies to find best of breed endpoint security solutions
• Ensure laptop fleet remain encrypted through the life cycle of the device
• Proactively create reports and other documentation related to endpoint configuration
• Identify opportunities to improve endpoint security configurations
• Review GPO configurations for endpoint and ensure they align with security directives and policies
• Provide recommendations for endpoint risk remediation and perform follow-up testing to ensure security risks have been eliminated or mitigated
• Work with existing cybersecurity tools and systems; develop and implement strategies for improving or further widening the deployment of these systems

WHAT YOU WILL NEED
• Advanced knowledge of various technology platforms such as windows and mac laptops, iPhone and android mobile devices and tablets, multi-factor authentication devices such as Yubikeys
• Ability to problem solve on the fly, use sound judgement to generate and evaluate alternatives and make recommendations that align with cyber security directives and policies
• Passionate about technology and Information Security
• Meticulous attention to detail
• Great collaborator able to bring together diverse view points and drive progress in technical projects
• Have a knack for simplifying processes and low friction security
• Self-directing and focused on delivering results
• Able to work in high-pressure environments, supporting high profile executive teams

#Ll-CC1

#Ll-Remote

Learn more about Fox Tech at
#foxtech

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, disability, protected veteran status, or any other characteristic protected by law. We will consider for employment qualified applicants with criminal histories consistent with applicable law.

At FOX, we foster a culture and environment where everyone feels welcome and can thrive. We are deeply committed to diversity, equity, and inclusion, including attracting, retaining, and promoting diverse talent across our company. We live in a diverse world, with different ideas and different perspectives that come together to spark new ideas and make great things happen. That means reflecting the diversity of the world around us is critical to our company’s success. We ensure that our viewers, communities and employees feel heard, represented, and celebrated both on screen and off.

to learn more about the diverse communities of people behind our brands.
Apply Here
For Remote Security Engineer, Client Operations roles, visit Remote Security Engineer, Client Operations Roles

********

Principal Product Security Engineer (Program Protection) at Boeing

Location: Los Angeles

Job Description

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

We are Boeing Research & Technology (BR&T): Boeing’s global research and development team creating and implementing innovative technologies that make the impossible possible and enabling the future of aerospace. We are engineers and technicians, skilled scientists and bold innovators; Join us and put your passion, determination, and skill to work building the future!

Within BR&T’s Mission System Technologies (MST) organization, Boeing’s Advanced Computing Technology (ACT) team performs innovation, development and maturation of Advanced Computing and it’s associated subordinate technologies.

As a Principal Product Security Engineer (Program Protection), you will be part of an amazing, collaborative team working on proprietary programs. As a highly productive, talented, self-motivated, and creative member of Boeing Research and Technology, you will work with multiple engineering and support groups, on both ongoing operational efforts and exciting future projects.

The Boeing Disruptive Computing & Networking Organization is developing critical new technologies that will enable Future Advanced Sensors and Resilient Networks. Boeing is currently working multiple technology developments and is expanding our scope in this rapidly growing market. Boeing is seeking candidate with Technology Development, Product Development and/or System

Engineering experience to lead the Disruptive Computing & Networks Program Protection (P2) strategy and execution.

This position can be based out of El Segundo CA, Fairfax VA, or Annapolis Junction MD.

Position Responsibilities:
• Develop concepts of operations, processes and procedures for effective Program Protection solutions
• Collaborate with our portfolio of program leaders and government representatives to ensure Program Protection initiatives are effectively implemented
• Identify, analyze, and mitigate potential risks associated with Program Protection in order to achieve technical and programmatic objectives
• Assess threats and vulnerabilities, and recommend counter measures/mitigations
• Coordinate across various team members (e.g., Program Managers, Customers, Engineers, and Security, technicians) to develop and refine Program Protection concepts, methodologies, and strategies
• Author, coordinate reviews and release written Program Protection Plans and other documentation (e.g., OPSEC and ConOps plans)
• Flexibility to travel to various Boeing, Subcontractor, and Vendor locations to provide Program Protection support and conduct Program Protection briefings

This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options.

This position requires a current Tier 5 (T5), formerly known as a Single Scope Background Investigation (SSBI) (U.S. Citizenship required) or requires candidate agreed to enter a Continuous Evaluation program

Basic Qualifications (Required Skills/Experience):
• Bachelor, Master or Doctorate of Science degree from an accredited course of study, in engineering, computer science, mathematics, physics or chemistry
• 10+ years of experience with systems security and Program Protection
• Experience in both program physical security and cyber security as they pertain to government program protection requirements

Preferred Qualifications (Required Skills/Experience):
• Adjudicated Counter Intelligence scope polygraph completed within the last 5 years
• Experience in working multi-compartmented security systems
• Experience supporting new technology development programs
• Department of Defense and/or Equivalent Federal Experience working in the Security and Intelligence community

Typical Education/Experience:

Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, computer science, mathematics, physics or chemistry (e.g. Bachelor) and typically 20 or more years’ related work experience or an equivalent combination of technical education and experience (e.g. PhD years’ related work experience, Master years’ related work experience). In the USA, ABET accreditation is the preferred, although not required, accreditation standard.

Relocation:

This position offers relocation based on candidate eligibility.

Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Shift:

This position is for 1st shift.

Equal Opportunity Employer:

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
Apply Here
For Remote Principal Product Security Engineer (Program Protection) roles, visit Remote Principal Product Security Engineer (Program Protection) Roles

********

Senior Security Operations Center Engineer at Shein Distribution Corporation

Location: Los Angeles

Job Title: Senior Security Operations Center Engineer

Reports to: Head of Security Operations and Incident Response

Location: Los Angeles, CA – Remote (Must be a CA, WA, MD, TX, PA, DC or IN resident and have the ability to come into the office as needed)

About SHEIN Technology

SHEIN Technology is a U.S. technology company. Founded in 2012, SHEIN is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN reaches consumers across more than 150 countries and regions around the world. We place a premium on choice, delivering more than 6,000 new fashion, beauty and lifestyle products daily with more than 600,000 items available. Our mission is to help people express their individuality through the latest trends that are accessible and affordable. To learn more about SHEIN, follow us at , and .

Position Summary:

SHEIN Global Security and Risk Management (GSRM) is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN’s global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.

Here, innovation isn’t simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.

The Senior Security Operations Center (SOC) Engineer, will be responsible for the monitoring of security telemetry and analysis/triage security events in our Global Security Operations Center (GSOC). This operations engineer will ensure all production security controls and technologies operate in compliance with all established polices and SLAs, across all aspects of the security operating framework.

This engineer should have a deep technical understanding of application, host and network security practices, as well as all incident response protocols and practices. Must be familiar with security industry standards and best practices, and must be able to effectively work with development, engineering and operational counterparts, across a broad deeply technical environment in all security areas common within an e-commerce and technology industry. This engineer should also have experience in security data analytics, intelligence & threat hunting. This engineer will also assist their leadership with ensuring all security tools and technologies are properly supported, implemented and sufficiently met the needs for which they are deployed to protect SHEIN confidential and proprietary data.

Core Responsibilities:
• Assess security information, triage and respond to security events, identify false positives, and conduct correlation analysis across numerous internal and external data sources while prioritizing information security incidents.
• Identify, triage and remediate threats based on threat intelligence as well as active analysis of system log data
• Assess newly published vulnerabilities and attacker tactics, techniques, and procedures (TTPs) to identify possible defensive measures to locate and stop threat actors
• Research and stay current on Cybersecurity trends, new security tools, security standards, best practices and news
• Help mature and enhance investigation theory, detection logic, automation playbooks
• Sustain high-availability service levels and ensure fulfillment of business-wide service levels and operational support objectives.
• Demonstrates continuous effort to improve operational performance, streamline work processes and work cooperatively and provide quality seamless customer service.

Skills and Qualifications:
• A minimum of 4 years of experience in security operations and incident response with experience in e-commerce or technology industry preferred
• Possess a Bachelor’s degree or higher in the field of engineering, computer science or equivalent advance technology field of study or equivalent work experience
• Relevant cyber security certifications, such as CISSP or GIAC are highly desired
• Analytical mind with strong attention to detail and a commitment to quality
• Demonstrated proficiency in network security concepts, such as security event correlation, TCP/IP concepts, DNS, firewall technologies, IPS/IDS, Endpoint protection, routers, switches, perimeter security, authentication, encryption, and VPN solutions
• Demonstrated ability to effectively interact professionally with a diverse group of people at all levels of the organization
• Experience using enterprise cybersecurity technologies such as EDR, SOAR, SIEM, etc.
• Ability to work in an operational environment with flexible working hours and ability to be on call, including nights and weekends
• Strong working and practical knowledge of security monitoring, threat hunting, log management, SIEM and data analytics
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
• Must be able to support on-call, escalation and high-paced/ fast tempo operating environments
• Experience analyzing security information and events in AWS, CrowdStrike Falcon, Palo Alto Cortex is highly desired

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Apply Here
For Remote Senior Security Operations Center Engineer roles, visit Remote Senior Security Operations Center Engineer Roles

********

Information Security Engineer, DevSecOps at RAND Corporation

Location: Los Angeles

Job Type:

Regular

Information Security Engineer, Dev Sec Ops

RAND Information Security

The RAND Corporation seeks an Information Security Engineer, Dev Sec Ops , with a strong background in both cybersecurity and API-driven automation and orchestration to join the Information Security Architecture and Engineering team.
• The Architecture and Engineering team applies next generation technologies to combat the efforts of advanced persistent threat (APT) adversaries in their attempts to infiltrate and disrupt RAND’s computing services.
• The candidate will apply their experience to streamline ongoing operations while identifying and pursuing opportunities to continuously improve the impact and reliability of our cyber deterrence capabilities applying zero trust architecture (ZTA) network principles through API-driven automation to integrate systems, orchestrate workflows and perform quality assurance checks on network and system configurations.
• The engineer will identify, design, and develop solutions to integrate systems for better interoperation, facilitate continuous quality control of systems configurations, and streamline the analysis of systems vulnerabilities and assist with threat hunting.
• As RAND transitions the bulk of its computing services to cloud infrastructure and services, this role will work with others on the team to identify areas where automation could benefit the cloud security posture.
• The information security team plays an integral role in securing all of RAND’s information systems by setting and verifying security and policy requirements.
• Additionally, RAND’s information security professionals have the unique experience of being able to work with RAND’s cyber policy researchers in support of their policy analysis on emerging cyber threats on ransomware, autonomous vehicles, health care services, critical infrastructure, and our national security capabilities.

DUTIES AND RESPONSIBILITIES AND OTHER SUCCESS CRITERIA

The following duties and responsibilities are expected of the position:
• Developed automated orchestration routines to ensure ongoing protection of cloud services,
• Design and develop solutions to integrate systems across the network to improve interoperation as well as to continuously verify systems configuration against baselines,
• Identify, select, and deploy emerging cloud and hybrid cloud security services across RAND’s cloud services,
• Diagnose and troubleshoot cyber-related network and system performance deficiencies,
• Contribute to the development and maturation of the cybersecurity strategy and roadmap,
• Apply engineering principles to the management of RAND’s cyber infrastructure services,
• Work with all of RAND’s software and web development teams to ensure sound security practices and security is designed and built into the applications from the ground up.
• Initiative-taking and fully responsible for leading technology deliverables, analyzing gaps and driving improvements to RAND’s cyber-deterrence capabilities,
• Provide input to security policies and standards in accordance with changes in regulations, best practices, industry trends or controls required by RAND contracts and grants.
• Experience with relational and No

SQL database technologies
• Experience with C/C#, web frameworks (e.g., Django, Flask or React), Java, JavaScript, Python, Docker and other abstraction and containerization technologies
• Experience designing, implementing, and maintaining cybersecurity configurations in network, boundary appliances or application services
• Some experience working with leading SaaS platform APIs such as Workday, Salesforce or Office 365

MINIMUM QUALIFICATIONS
• A minimum of 5 years’ experience in engineering and cyber deterrence with 3 years’ experience in software engineering with languages such as JavaScript and Python
• A minimum of 3 years’ experience with at least one of AWS, Azure or GCP
• Cloud orchestration technologies including such as AWS Cloud Formations, Azure Kubernetes, and Durable Orchestration
• Hybrid cloud security platforms such as Armor Anywhere and Cloudvisory
• Secure coding standards including OWASP
• Securely managing credentials and secrets for general coding and cloud APIs
• Cyber forensics – conducting cyber investigations and diagnosing indicators of compromise
• Proficiency with infrastructure as code, configuration management and version control systems
• Requirements’ definition, gap analysis and technology assessment and selection
• Industry engagement – ND-ISAC, RSA, Blackhat and others
• Understanding of capabilities central to securing enterprise networks including end point protection, detection and response services, network intrusion detection and prevention systems, behavior-based malware detection, and memory forensics

Stand-out qualifications that would put you ahead of other candidates
• Lead developer responsible for the full stack development of a multitier application responsible for auditing, ensuring the compliance or assisting with threat hunting on a network
• Developed a cyber solution that applied…
Apply Here
For Remote Information Security Engineer, DevSecOps roles, visit Remote Information Security Engineer, DevSecOps Roles

********

Application Security Engineer at Workbridge

Location: Los Angeles

Job Description
We are working with a company that is focused on using innovative software engineering and strategic business consulting. They use critical thinking and physical-digital capabilities to provide high business value to customers all over the country. They are committed to having a positive impact on our customers, our employees, and our communities. This company is looking for a Application Security Engineer to bring in ideas and passion.

In this position you will work with the security team to be able to run security tool integration. Currently looking for Java Developers with some AppSec experience, or AppSec Engineers with some developer experience. You will champion security tools integration, code review, and remediation in application development. This can be someone with strong Java skills and wants to be trained into being strong in AppSec too. This is a fully remote position.
Required Skills & Experience
• Willing to integrate SAST and DAST tooling into CI/CD Pipeline & Development process
• 3 plus years of experience
• Strong Java Developer experience
• Experience with running security codes to fix code vulnerabilities
• Able to use intelligence from security scans to fix code vulnerabilities

Desired Skills & Experience
• Advanced level knowledge of cyber security operations
• Bachelor’s degree in IT, Security, or Computer Science
• Be able to communicate security information to the team

The Offer
• Competitive salary plus annual bonus

You will receive the following benefits:
• Medical Insurance
• Dental Benefits
• Vision Benefits
• Paid Time Off (PTO)
• 401(k) match

Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
Apply Here
For Remote Application Security Engineer roles, visit Remote Application Security Engineer Roles

********

Staff Security Engineer – Information Security, Identity And Access Management at Riot Games

Location: Los Angeles

• Riot Security Engineers hold an in-depth knowledge of specific areas of expertise.
• We don’t just focus on breaking things; we support teams across Riot to develop security capabilities which help protect Rioter experiences.
• We relish the opportunity to work with new tech stacks and product teams, each with their own unique security risk profile.
• At the most fundamental level, their goal is to help provide value to players and make life harder for troublemakers by protecting our internal environments.
• Our Rioter Security team’s mission is to provide secure network and identity platforms for Rioters from which to build outstanding experiences for our players.
• Reporting directly to the IAM lead, you will architect and develop policy based authentication services, implementing identity federation standards and driving automation practices within the group to get Rioters and Partners the access they need as they need it.
• From collaborating with other Security teams to working with multiple teams across the spectrum of Riot, everything we do is an effort to protect Rioters.
• Support a modern, scalable, and security focused set of internal identity platforms and practices across Riot.
• Collaborate across Riot Engineering to deliver a policy based access control strategy backed by strong authorization engine based controls.
• Guide an “automation first” approach to service offerings such as SSO integrations, access controls, and identity lifecycle operations.
• Identify and resolve emergent issues within Okta tenants
• Participate in departmental strategy for IAM Roadmap
• Maintain and provide support for Okta and Active Directory integrations
• 5+ years of experience working with enterprise IDP’s
• Expert knowledge of delegated authentication standards
• Experience communicating technical goals and objectives to partners.
• Strong track record of applying automation for repeatable tasks
• Robust programming experience in Python and/or Go.
• At ease with Terraform (Terraform\Desired State Configuration)
• High level knowledge of SCIM standards and schemas
• Comfortable communicating in distributed environments and cultures.
• Working familiarity with principles of JIT, JEA, PBAC/RBAC, and Least Privilege access structures.
• Experience with different cloud providers such as Microsoft Azure, GCP, or AWS
• Experience consuming RESTful APIs
• Experience with tools like Postman
• Experience with Test Driven Development
• Experience with tools such as Burp Suite
• For this role, you’ll find success through craft expertise, a collaborative spirit, and choices that focus on your fellow Rioters, who are the customers of your work.
• Being a dedicated fan of games is not necessary for this position!
• Riot has a focus on work/life balance, shown by our open paid time off policy, in addition to other perks such as flexible work schedules.
• We offer medical, dental, and life insurance, parental leave for you, your spouse/domestic partner and children, and a 401k with company match.
• Check out our benefits pages for more information.
• Riot Games fosters a player and workplace experience that values teamwork embodied by the Summoner’s Code and Community Code. Our culture embraces differences as a strength, and our values are the guiding principles for how we approach work.
• We are committed to putting diversity and inclusion (D&I) at the center of everything we do, and promoting a fair and collaborative culture where Rioters treat one another with dignity and respect.
• We encourage you to read more about our value of thriving together and our ongoing work to build the most inclusive company in Gaming.
Apply Here
For Remote Staff Security Engineer – Information Security, Identity And Access Management roles, visit Remote Staff Security Engineer – Information Security, Identity And Access Management Roles

********

Cyber Security Engineer III- Cloud – Hiring Immediately at Blue Origin

Location: Los Angeles

We are a diverse team of collaborators, doers, and problem-solvers who are relentlessly committed to a culture of safety. This position will directly impact the history of space exploration and will require your commitment and detailed attention towards safe and repeatable space flight. Join us in lowering the cost of access to space and enabling Blue Origin’s vision of millions of people living and working in space to benefit Earth!

As part of a small, hardworking and accomplished team of experts, you will protect and secure for various enterprise systems. You will share in the team’s impact on all aspects of Cyber Security. Additionally, the team member will lead and assist with many aspects of operations and engineering on the Cyber Security team. This position will directly impact the history of space exploration and will require your dedicated commitment and detailed attention towards safe and repeatable spaceflight.

In this role you will work with engineering, development and architecture groups to continue maturing our cloud solutions to fulfill security requirements for existing and new applications and systems. You will contribute to the design, documentation and deployment of new and existing security technologies. We work closely with the Cyber Security, partner and customer teams to perform architectural and engineering reviews and submissions to support objectives. You will be responsible for documenting processes and procedures relating to Cyber Security technologies. You will assist the Cyber Security Sr. Manager with maintaining the Cyber Security Roadmap. This role to supports the security organization with maintaining customer compliance requirements revolving around NIST, ISO and CNSSI. As a senior member of the team, you will also be responsible for mentoring other team members on Security technologies and standards.

We are looking for someone to apply their technical expertise, leadership skills, and dedication to quality to positively impact safe human spaceflight. Passion for our mission and vision is required!
Responsibilities:
• Work with engineering and development groups providing hands on engineering of AWS Cloud security services for existing/new applications and systems.
• Lead the deployment and continuous improvement of new and existing security technologies in cloud environments.
• Work with other departments to implement cloud security into work and data flows to ensure compliance and manage risk.
• Maintain and support other Cyber Security technologies including CASB.
• Document processes and procedures relating to Cyber Security technologies.
• Assist the Cyber Security Sr. Manager with maintaining the Cyber Security Roadmap.
• Support the security organization with maintaining customer compliance requirements revolving around NIST and ISO.
• Mentor other team members on Security technologies and standards.
Qualifications:
• Minimum of a bachelor’s degree in Information Systems, Computer Science, or equivalent experience.
• 3-5 years performing deployments, integrations and managing security tools such as CASB and AWS security services.
• Familiarity with various host, network and cloud-based security technologies to own the maintenance and lifecycle of technology.
• Experience with NIST800 standards including 30, 53, 82, and 171
• Experience with ISO27000 series standards
• Ability to communicate with all levels of an organization up to the Executive Staff and external customers
• Ability to work in a fast-paced, evolving, growing, and multifaceted environment
• Ability to earn trust, maintain positive and professional relationships, and strengthen our culture of inclusion
• Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum

Desired:
• Applicable Security Certifications – CISSP, GIAC Certifications, CISM, CISA, Security+

The expected salary range for the position is displayed in accordance with the Colorado Equal Pay for Equal Work Act. Final agreed upon compensation is based upon individual qualifications and experience.

Estimated salary wage (Colorado only): $117K – $195K

Export Control Regulations

Applicants for employment at Blue Origin must be a U.S. citizen or national, U.S. permanent resident (i.e. current Green Card holder), or lawfully admitted into the U.S.as a refugee or granted asylum.

Equal Employment Opportunity

Blue Origin is proud to be an Equal Opportunity/Affirmative Action Employer and is committed to attracting, retaining, and developing a highly qualified, diverse, and dedicated work force. Blue Origin hires and promotes people on the basis of their qualifications, performance, and abilities. We support the establishment and maintenance of a workplace that fosters trust, equality, and teamwork, in which all employees recognize and appreciate the diversity of individual team members. We provide all qualified applicants for employment and employees with equal opportunities for hire, promotion, and other terms and conditions of employment, regardless of their race, color, religion, gender, sexual orientation, gender identity, national origin/ethnicity, age, physical or mental disability, genetic factors, military/veteran status, or any other status or characteristic protected by federal, state, and/or local law. Blue Origin will consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state, and local laws. For more information on “EEO Is the Law,” please see and .

Blue Origin will consider for employment qualified applicants with criminal histories in a manner consistent with the Washington Fair Chance Act, Los Angeles Fair Chance in Hiring Ordinance, and other applicable laws.

Affirmative Action and Disability Accommodation

Applicants wishing to receive information on Blue Origin’s Affirmative Action Plans, or applicants requiring a reasonable accommodation in order to participate in the application and/or interview process, please contact us at .

Benefits

Employee Benefits include: Medical, dental, vision, basic and supplemental life insurance, short and long-term disability and 401(k) with up to 5% company match.

Paid Time Off: Provides up to 4 weeks per year, in addition to 14 holidays
Apply Here
For Remote Cyber Security Engineer III- Cloud – Hiring Immediately roles, visit Remote Cyber Security Engineer III- Cloud – Hiring Immediately Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo