The Cybersecurity Engineer will perform software security tasks of a simple to intermediate nature which require research and analysis. Analyze security systems and seek improvements on a continuous basis. Report possible threats within the software. Research weaknesses and find ways to counter them. Help to develop best practices and security standards for the organization.
ESSENTIAL DUTIES AND RESPONSIBILITIES
Work with security teams across Software Development to identify key security gaps and areas for improvement.
Work closely with Software Development Teams to implement security tasks, protocol, and strategies.
Install and maintain software that monitors systems for irregular behavior and set up preventive measures.
Identify gaps in and drive improvements to cloud and on-prem products and services that enhance the security of Minitab and its customers.
Assist with implementation and maintenance of cloud application vulnerability scanning tools as needed.
Assist in providing security requirements for new products and feature enhancements to existing products.
Act as a reviewer on pull requests from developers and provide feedback on any security related issues.
Perform application penetration tests and risk assessment on cloud and on-prem products and report vulnerabilities and suggested remediation steps where appropriate.
Assist with customer security questionnaires, assessment and audits as needed.
EDUCATION, KNOWLEDGE, AND EXPERIENCE
Associate or Bachelor’s degree in Cybersecurity, Computer Science, IT, or a closely related discipline or equivalent experience.
0-5 years of experience developing, operating, and maintaining security systems.
Working knowledge of cloud platform technologies such as Microsoft Azure, Amazon Web Services and Google Cloud.
Experience in time management regarding project completion.
The following are also desirable:
Information/Cyber Security certification such as CISSP or CompTIA+.
Experience with source control systems such as Team Foundation Server or Git.
Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond).
Experience with standard web application security tools such as Arachni, Brakeman, and BurpSuite.
Familiarity with security best practices for Kubernetes based cloud applications.
Experience using an agile development process.
QUALIFICATIONS, SKILLS, AND ABILITIES
Ability to work well in a team of skilled software professionals with the ability to build consensus for new practices and technologies.
Ability to learn new technologies quickly and independently and to discern the relevancies, applicability, and usefulness of those technologies to Minitab.
Ability to demonstrate initiative and solve complex technical problems.
Ability and desire to lead large teams and projects, and to mentor other software engineers.
Ability to work closely with management on sensitive security issues.
Ability to speak, read, write, and understand the English language.
Minitab is a Federal contractor and is following all applicable COVID-19 vaccination requirements.