Security Automation Programmer (Onsite)

Work arrangement:

• Onsite
• W2 position; 12 months

• Enhance the security posture of the client to protect sensitive data and ensure the integrity of the client s systems.

• Champion DevSecOps through Security Automation: Leverage your full-stack development expertise to design, implement, and maintain security tools and automation. This includes building scripts to automate critical tasks like data security checks, vulnerability scanning, and user access control, streamlining security processes and improving overall efficiency.
• Monitor and analyze security events: You'll be responsible for monitoring security information and event management (SIEM) tools to identify potential threats and suspicious activity. Along with determine security gaps in these controls to improve overall security posture. This will also involve analyzing logs, investigating alerts, and using your knowledge of security frameworks (NIST, CIS, CISA) to assess risk.
• Support secure application development: You'll collaborate with developers to ensure secure coding practices are followed throughout the Software Development Lifecycle (SDLC). This might involve code reviews, threat modeling, and providing guidance on secure development principles.
• Investigate and respond to security incidents: In the event of a security breach, you'll be part of the incident response team, helping to identify the root cause, mitigate damage, and implement recovery procedures.
• Document security procedures and best practices: You'll develop clear and concise documentation for security policies, procedures, and best practices. This may involve creating training materials or user guides to ensure everyone understands their role in maintaining security.
• Provide on-call support when needed and other related duties as required.

• .Net
• C#
• JavaScript
• MSSQL
• Shell Scripting
• Visual Studio
• Azure Cloud and Virtualization
• Web - application programming interface (API)

• Recommended: NIST Frameworks, General understanding of IT Security

• Certified Incident Handler (GCIH)
• Certified Computer Security Incident Handler (CSIH)
• EC-Council Certified Incident Handler (ECIH)
• EC-Council Certified Network Defender (CND)
• GIAC Critical Infrastructure Protection (GCIP)
• GIAC Defensible Security Architecture (GDSA)

• A bachelor's degree in information technology systems, computer science, cybersecurity, or a related field with 3+ years experience in a security focused role.
• Relevant experience may be substituted for the degree on a year-for-year basis

DPP offers a range of compensation and benefits packages to our employees and their eligible dependents. Call today to learn more about working with DPP.

Authorized US Worker - s and those authorized to work in the US are encouraged to apply. We are unable to sponsor at this time. EOE/AA/V/D