Onsite/ Hybrid/ Remote: Burbank, CA candidates preferred
Duration: 12 months
Rate Range: $100/hr on W2 depending on experience (no C2C or 1099 or sub-contract)
Work Authorization: US Citizens/GC candidates/ L2/ E3 only
Description:
Experience with performing detailed design and architecture reviews with developers and infrastructure SMEs
Experience performing hands-on security assessments of web applications, mobile applications, cloud infrastructure, networks
In-depth knowledge of cloud security concepts and architecture. AWS is a must, with Azure and GCP nice to have
Detailed knowledge of OWASP Top 10 and common vulnerability types with the ability to explain them to a less technical audience
Must have very strong written and verbal communication skills.
Experience with container technologies such as Kubernetes and Docker
Relevant security certifications such as OSCP, ISC2 CISSP, SANS, CEH, AWS Certified Security, etc. are a major plus.
Basic Qualifications:
6-10 Years of experience in cybersecurity and cloud infrastructure engineering/architecture with an MS/BS degree in Information System Management / Computer Science / Information Security or a related technical discipline
Experience with threat modeling concepts and leading threat modeling workshops
Preferred Qualifications:
- Experience with content protection in the Media and Entertainment space (watermarking, digital rights management, knowledge of the filmmaking process)
- Software development domain and principles, including design patterns, code structure, programming languages, continuous integration (Git), continuous deployment (Travis/Jenkins), and deployment orchestration (Chef, puppet, or equivalent).
- Hands-on knowledge of Automation skills, Dev Ops skills, etc.
- Experience with microservices architectures
Note: 5 plus years experience minimum. Proven work history designing and/or assessing security for Cloud Environments. Absolutely must have previous experience as an SME performing security assessments. Must be able to work with minimal supervision and be able to handle ambiguity.