Apply here for a DevSecOps Security Engineer job opening at IntegrateUs LLC

We are seeking a full-time contractor or employee for a DevSecOps Security Engineer position requiring over 8 years of experience. In this role, you will align technical solutions with business objectives and challenges by identifying alternative approaches and conducting detailed cost/benefit analyses.

Responsibilities:

Provide support for TIERS Operations, AWS Cloud Migration, and the Authority to Connect project within the TIERS Cloud Migration initiative.
Leverage threat intelligence to identify and address vulnerabilities across various environments.
Conduct daily security and operational analyses for both on-premise and cloud systems.
Collaborate effectively within large-scale operations and development environments.
Maintain a strong understanding of regulatory requirements, including custodian artifacts.
Assist IT operations and development teams in upholding industry standards.
Demonstrate proficiency with state-of-the-art cybersecurity software.
Interact regularly with IT teams managing DevSecOps functions.
Possess comprehensive knowledge of IT infrastructure, including databases and system administration.
Be available for onsite work at the office once a week or as needed.

Required Skills:

Develop and implement security policies and controls while identifying vulnerabilities throughout the organization.
Demonstrated expertise in data and network security processes, managing security systems, and investigating security breaches.
Perform daily security analyses across both on-premises and cloud environments, partnering with DevSecOps teams to deliver audits, documentation, and reporting.
Maintain a deep understanding of regulatory requirements, current industry standards, and emerging trends, with hands-on experience using advanced cybersecurity software alongside DevSecOps and custodial teams.
Proven ability to plan, manage, and oversee various projects from inception to completion.
Strong analytical skills with a talent for pinpointing issues, evaluating alternatives, and implementing effective solutions.
Coordinate and lead communications such as project kick-off meetings, critical findings notifications during testing, and wrap-up sessions reviewing test results, evidence, reproduction steps, and remediation strategies.
Implement robust security measures to protect computer systems, networks, and data, while staying current on the latest threat intelligence and hacker methodologies.
Extensive experience working with frameworks such as NIST 800-37, NIST 800-53, MARS-E controls, managing POA&Ms, and developing corrective action plans.
Review and discuss computer security procedure violations with the HHSC/TIERS Security team, and collaborate with users to address data access needs, security breaches, and programming adjustments.
Proficient with security web application firewalls.
Skilled in managing conflicts and resolving issues at managerial levels.
Adept at coordinating audit responses, gathering evidence, and executing plans of action in collaboration with IT departments.

Preferred Skills:

Advanced experience in developing and implementing IT policies, standards, and procedures.
Proven ability to deliver technical training on cloud-based technologies.
Solid background in providing support for both Windows and Linux operating systems and applications.
Expertise in conducting information security risk assessments.
Experience in security governance, creating documentation, and developing comprehensive security plans.
In-depth knowledge of AWS Cloud Security is highly preferred, with hands-on experience in other cloud service providers also valued.
Familiarity with ITIL processes and ticketing systems such as Remedy and ServiceNow.
Competence in training staff on network and information security procedures and data protection practices.
Experience using tools such as Archer GRC, Dynatrace, Splunk, Imperva Web Application Firewall, Qualys, and MS Office.