Product Security Engineer

About Us:

Radiant Digital delivers technology consulting and business solutions for commercial and government clients.

Our flexible delivery model allows us to provide end-to-end solution delivery, single project execution, and, or strategic resources.

CMMI Maturity Level III and ISO 9001 – 2015 certified.

Responsibilities:

MUST HAVE SKILLS:

Senior Security Analyst, you will conduct security assessments for products and solutions developed by the Consumer Group. You will collaborate with various cross functional teams and help to create, define, and implement security controls and tooling in conjunction with internal product development and partner teams.

Application Architecture-

Not the Penetester and not the Developer- looking for -who Can discuss the Security - compliance-Network, Technical Security Audit (Cyber Audit or IT Audit not the Finance)

Two rounds of Interview.

Network Security

Cyber
- Evaluate security postures and provide recommendations for improvement and risk reduction for Cloud services, Mobile Platforms(IOS/Android/TvOS/FireTV), Web and Embedded applications (e.g., build threat models, design reviews, document mitigation techniques, apply security design patterns, code review).
- Bachelor’s degree in Computer Science or related fields
- Six or more years of relevant work experience.
- Experience with performing security requirements analyses to secure the deployment of large globally distributed cloud-based and/or mobile-embedded platforms.
- Experience with OWASP Top 10 vulnerabilities and Cryptographic Algorithms: (PKI), X.509 Public Key Certificates, authentication protocols, and transport layer security, OID, OAuth, SAML.
DESIRED SKILLS:
- Master’s degree in Computer Science or equivalent engineering experience.
- Direct experience with implementing Security Services and tools in AWS such as GuardDuty, Macie, CloudTrail, CloudWatch, KMS, Compute (e.g., EC2, GCE)..
- Experience with storage technologies such as: S3, Networking: VPC, IDS/IPS, WPA, firewalls, reverse proxies, Load Balancers, Security Groups/List.
- Experience with configuration tools: AWS Config, AWS Inspector, SDK/CLI. Vulnerabilities tools: Prisma Cloud, Crowdstrike, etc.
- Experience Container Security experience with Docker, ECS, Kubernetes.
- Experience with configuration languages/IaaC: JSON, CloudFormation Terraform
- Experience with SDLC for mobile platforms including use of obfuscation techniques, Reverse Engineering and Tamper Resistant software development on Mobile Platform.
- Understanding of various types of Exploits, Threat Modeling, and Attack surfaces
- Experience with IT Security Frameworks such as NIST, ISO27001, PCI, DSS, FedRAMP
- One or more of the following certifications: AWS Certified Solutions Architect (professional), AWS Certified Security (Specialty), CSA Certificate of Cloud Security Knowledge (CCSK), ISC2 Certified Cloud Security Professional (CCSP), CISSP.