Lead Application System Security Analyst

last updated December 15, 2020 7:18 UTC

GRIMM

HQ: Remote

more jobs in this category:

  • -> Virtual Administrative Assistant @ NothernTrust
  • -> AI Training for People Operations Experts @ Remotasks
  • -> Remote CFO ($100k/yr) @ Thompson & Thompson Consulting
  • -> Remote Finance Lead @ Red Hot Marketing LLC
  • -> Virtual Assistant @ Solesdi US

Thank you for considering GRIMM

Challenge Development Lead The GRIMM AppSec team works with clients to assess and improve the security posture of applications and systems in partnership with client architects, developers, operators, and leadership. This includes formalized threat modeling, architecture review, source review, and where appropriate binary reverse engineering. Our goal is not to provide a compliance check box, but to actively work with our clients to improve their security, now and in the future.

GRIMM is seeking a senior engineer to lead and support security assessment engagements. This is a customer-facing position; qualified applicants will need to be comfortable engaging with clients on their own to gather and refine requirements, discuss findings, present progress, and also to help establish and expand business relationships with our customers.

All members of our team are constantly learning about new topics and applying that knowledge to challenging problems. We all share information and help guide each other as a team, and everyone has opportunity to work independently and direct their own activities.

Education and Certification A degree or comparable work experience is required in the fields of Computer Science, Computer Engineering, or a related discipline. Degreed or certified candidates will not receive preferential consideration. If a specific certification is required by a client GRIMM will cover certification costs. Location The AppSec team is 100% remote. Some future (post-pandemic) projects may require travel to customer sites. Travel will be less than 25%, though opportunities for additional travel may be available if desired.

Company Description GRIMM researches and develops the art of the possible in business modernization and computing technologies through cybersecurity, sensors, tools, analytics, frameworks, modeling and simulation, automated testing, cyber range Installation, Operations, and Maintenance (IOM), consulting, and intelligence. Our practices build on extensive experience in cyber mission support for national defense, and commercial service improvement and consulting. Our engineers and subject matter experts (SMEs) learned their trade from real-world engagements, not just textbooks. Position Requirements: The ideal candidate will have at least 5 years of experience in application security. They will need to be able to manage and lead all technical aspects of a client engagement. A senior engineer must be able to oversee and mentor junior and mid level engineers.

They must have a strong technical background in at least 3 of the following fields:

  • Threat Modeling
  • Source code analysis
  • Infrastructure security
  • Security design reviews
  • Web application security
  • Mobile application security
  • Cloud architecture security

Desired Qualities: Additional technical areas of expertise are desired as well such as:

  • Vulnerability analysis
  • Exploit development
  • Capture The Flag development
  • In-depth knowledge of an operating system

Other desired traits include:

  • US Resident
  • Desire and aptitude for public speaking
  • Willingness to go to conferences and represent the company (speaking, running contests/exhibits, etc.) Perks: Ability to work from home, with some travel Work with a team of skilled people who think hacking is fun Take on a variety of high caliber technical challenges Strong benefits package Medical/dental/vision insurance premiums paid 100% by the company 5% company match for 401K plan, no vesting period 10 paid holidays and flexible vacation policy GRIMM promotes a Drug-Free Workplace, is an Equal Opportunity Employer (EOE) and an Affirmative Action Employer.

GRIMM researches and develops the art of the possible in business modernization and computing technologies through cybersecurity, sensors, tools, analytics, frameworks, modeling and simulation, automated testing, cyber range Installation, Operations and Maintenance (IOM), consulting, and intelligence. Our practices build on extensive experience in cyber mission support for national defense, and commercial service improvement and consulting. Our engineers and subject matter experts (SMEs) learned their trade from real-world engagements, not just textbooks.

We promote a Drug-Free Workplace, are an Equal Opportunity Employer (EOE) and Affirmative Action Employer.

Shopping Cart
There are no products in the cart!
Total
 0.00
Checkout
0