|
The Prospective Group is seeking an Application Security Engineer to support Department of State, International Narcotics and Law Enforcement Affairs Bureau (INL) digital transformation by securing and protecting application environments, specifically within cloud-based infrastructures. This role demands a deep understanding of application security within Azure environments and experience working within federal agencies or departments.
Experience
Responsibilities include proactively identifying vulnerabilities, implementing security measures, and integrating security within Agile Framework Methodology and DevSecOps practices, while effectively communicating risks and remediation strategies to senior leadership.
Basic
- Designing, implementing, and securing applications and services hosted in Azure environments.
- Experience conducting security assessments and vulnerability remediation of Azure-hosted applications.
- Experience integrating security into the CI/CD pipelines and DevSecOps processes.
- Managing identity and access control policies utilizing Azure Active Directory.
- Practical knowledge of securing serverless applications and microservices architecture.
Mastery
- Defender for Cloud: Expert in threat detection, vulnerability assessments, and security recommendations.
- Azure Sentinel: Expert knowledge in setup, maintenance, creating custom queries, and SIEM management.
- EntraID: Mastery in identity and access management, including configuring policies, roles, Single Sign-On (SSO), and Multi-Factor Authentication (MFA).
- Azure Firewall and Web Application Firewall (WAF): Deep experience configuring and managing firewall security policies.
- Data integration and protection tools: Knowledgeable with Azure Purview, Azure Information Protection (AIP), and Azure Data Lake Security.
- Open-source and cloud-native technologies: Familiarity with Infrastructure as Code (IaC) including ARM templates, Terraform, and other open-source tools such as Logic Apps and Azure Functions.
- Threat Intelligence Tools: Expert use of Azure Sentinel, Log Analytics, and Microsoft Defender.
- Security Information and Event Management (SIEM): Expert in configuring, maintaining, and creating custom queries in Azure Sentinel for real-time threat monitoring and incident response.
Requirements
- Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field.
- Exceptional communication skills, capable of briefing senior leadership and clearly articulating security concepts.
- Strong proficiency in agile methodologies, with specific experience integrating security practices into Agile and DevSecOps workflows.
- Practical experience utilizing threat intelligence tools to proactively identify and mitigate security threats.
- Deep familiarity with Azure security frameworks and their implementation.
- Comprehensive knowledge of NIST standards
- Solid understanding of federal security regulations and compliance requirements, including FISMA and FIPS standards.
- Strong knowledge of cybersecurity framework such as MITRE ATT&CK
- Active Top Secret security clearance required.
Additional Skills (Nice to have)
- Familiarity with tools such as Databricks, Logic Apps, and other analytics platforms for comprehensive security insights.
- Knowledge of Cloud Security Framework (CSF), ISO 27000, and 27002
- Exposure to Mitre ATLAS Matrix tactics
|