Jobs
>
Denver

    Security Engineer, DevSecOps - Denver, United States - Coalfire

    Coalfire
    Coalfire Denver, United States

    6 days ago

    Default job background
    Description
    Security Engineer, DevSecOps | Remote US

    Coalfire


    Coalfire is the cybersecurity advisor that combines extensive cloud expertise, technology, and innovative approaches to help clients develop scalable programs that improve their security posture and fuel their continued success.

    View company page

    About Coalfire
    Coalfire is on a mission to make the world a safer place by solving our clients' toughest cybersecurity challenges.

    We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape.

    We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
    But that's not who we are – that's just what we do.

    We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

    And we're growing fast.
    We're looking for a Security Engineer to support our Product team.
    Position Summary
    The Security Engineer – DevSecOps

    position will provide security leadership within our product engineering teams.

    This resource will coordinate security requirements and standards throughout the product lifecycle by working closely with Engineering Development Operations to manage the vulnerabilities, cryptography, security monitoring, and risk management controls within our application-based products.

    What You'll Do

    Be a member of Coalfire Information Security Team and liaison with Product DevOps teams to ensure compliance to information security standards
    Detect, analyze, and react to detected security events, such as vulnerabilities, potential intrusions, and malware detections within the Coalfire product environments
    Perform regular SCA/SBOM, DAST and SAST scanning of the various cloud

    and stand-alone applications that comprise our product lineup
    Track trends against various metrics that capture the risk, threats, and vulnerabilities within the product environment
    Provide leadership and guidance to DevOps teams on how to prioritize and implement remediation activities for application flaws
    Be a champion for security within all stages of the SDLC
    What You'll Bring

    3-6 years experience in DevSecOps, AppSec, NetSec, InfoSec, other related roles
    Familiarity with open source and commercial application security tools and frameworks
    Experience in exploiting web applications and web services using application vulnerabilities, including XSS, CSRF, injection, DoS and API attacks
    Experience with the design and deployment of servers, applications, and containers in AWS
    Experience with network security and network technologies
    Strong verbal and written communication skills
    Familiarity or direct experience with DevOps processes, including CI/CD pipelines and related tools
    Familiarity with Agile-based development lifecycle processes, such as iteration planning, stand ups, and retrospectives
    Knowledge of cloud security designs, deployments, and monitoring
    Mastery of application security concepts, such as threat modeling and secure coding techniques
    At least one security certification, such as CISM, CISA, CISSP, Security+, CCSP, etc.
    Bachelor's degree (four-year college or university) or equivalent combination of education and work experience
    Bonus Points

    MS in Information Security, Computer Science or IT related discipline
    AWS DevOps and Security certifications
    In good standing with multiples major security certification (CISSP, CISM, CGEIT, CISA or similar)
    Previous experience in network or application penetration testing, IT controls assessments/audits, or hunt response exercises
    Previous developer experience with .NET Framework, .NET Core, Java, and JavaScript
    Previous automation experience with GitLab, AzureDevOps, Jenkins, Octopus, Python and shell scripts
    Why You'll Want to Join Us
    At Coalfire, you'll find the support you need to thrive personally and professionally.

    In many cases, we provide a flexible work model that empowers you to choose when and where you'll work most effectively – whether you're at home or an office.

    Regardless of location, you'll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities.

    You'll have opportunities to join employee resource groups, participate in in-person and virtual events, and more.

    And you'll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

    At Coalfire, equal opportunity and pay equity is integral to the way we do business. A reasonable estimate of the compensation range for this role is $78,000 to $135,000 based on national salary

    averages.

    The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors.

    You may also be eligible to participate in annual incentive, commission, and/or recognition programs.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

    #LI-REMOTE#LI-HJ1
    Explore more InfoSec / Cybersecurity career opportunities


    Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

    #J-18808-Ljbffr
  • Numerica Corporation

    DevSecOps Engineer

    17 hours ago

    Numerica Corporation Denver, United States

    Numerica's DevSecOps Engineers excel at developing state-of-the art algorithms and software that solve scientific problems with real-world applications. Working in small innovative teams, our software engineers build solutions that make a difference. Our research endeavors don't ...

  • Excelon Solutions

    Devsecops Engineer

    5 days ago

    Excelon Solutions Denver, United States

    Position: DevSecOps Engineer · Denver, CO (3 Days onsite per week) · 12 Months Contract · Looking for the Independent visas. · Required: · Continuous Integration/Continuous Deployment (CI/CD): Implement and maintain CI/CD pipelines to automate the software build, test, and deploy ...

  • TrackVia

    DevSecOps Engineer

    17 hours ago

    TrackVia Denver, United States

    About Us: · TrackVia offers the most-trusted app building platform for anyone looking for a better way to work. TrackVia gives businesspeople and IT experts the ability to easily build and integrate apps to track, manage, and automate processes in days, not weeks. Our customers m ...

  • Insight Global

    DevSecOps Engineer

    6 days ago

    Insight Global Englewood, United States

    Job Description · Boeing Global Services (BGS) is seeking a Lead DevSecOps Engineer to support our Flight Deck Solutions Program in Englewood, CO. · This position will provide key support to migrate to and maintain Azure Cloud infrastructure for applications and common components ...

  • LHH

    DevSecOps Engineer

    1 day ago

    LHH Westminster, United States

    The DevSecOps Engineer will assist in design, development, and administration of developer tools in multiple environments. This position will be working on a team realizing the architecture for products such as CICD platforms, Git infrastructure, and centralized developer solutio ...

  • LHH

    DevSecOps Engineer

    6 days ago

    LHH Westminster, United States

    The DevSecOps Engineer will assist in design, development, and administration of developer tools in multiple environments. This position will be working on a team realizing the architecture for products such as CICD platforms, Git infrastructure, and centralized developer solutio ...

  • LHH

    DevSecOps Engineer

    5 days ago

    LHH Westminster, United States

    The DevSecOps Engineer will assist in design, development, and administration of developer tools in multiple environments. This position will be working on a team realizing the architecture for products such as CICD platforms, Git infrastructure, and centralized developer solutio ...

  • LHH

    DevSecOps Engineer

    5 days ago

    LHH Westminster, United States

    The DevSecOps Engineer will assist in design, development, and administration of developer tools in multiple environments. This position will be working on a team realizing the architecture for products such as CICD platforms, Git infrastructure, and centralized developer solutio ...

  • Insight Global

    DevSecOps Engineer

    5 days ago

    Insight Global Greenwood Village, United States

    Boeing Global Services (BGS) is seeking a Lead DevSecOps Engineer to support our Flight Deck Solutions Program in Englewood, CO. · This position will provide key support to migrate to and maintain Azure Cloud infrastructure for applications and common components that support the ...

  • LHH

    DevSecOps Engineer

    5 days ago

    LHH Broomfield, United States

    LHH is seeking candidate for our client in Broomfield, CO. We are Seeking DevSecOps candidates with 8 or more years of experience for a long term contract position. There is potential for this role to also turn into a permanent role for the right candidate. This role is Hybrid an ...

  • Lee Hecht Harrison Nederland B.V.

    DevSecOps Engineer Senior

    17 hours ago

    Lee Hecht Harrison Nederland B.V. Westminster, United States

    The DevSecOps Engineer will assist in design, development, and administration of developer tools in multiple environments. This position will be working on a team realizing the architecture for products such as CICD platforms, Git infrastructure, and centralized developer solutio ...

  • Global Channel Management

    DevOps Technical Lead

    4 days ago

    Global Channel Management Denver, United States

    Job Description: DevOps Technical Lead needs 5 or more years of working experience with Industry standard DevSecOps CI/CD Tools including: source code repository management, CI pipeline configuration, and/or binary repository management. DevOps Technical Lead requires: Locations: ...

  • Altamira

    Senior SCRUM Master with Security Clearance

    5 days ago

    Altamira Denver, CO, United States

    Altamira Technologies is seeking and Senior Scrum Master to join our world-class engineering team in Denver CO · In this role, you will join a small, highly-focus team working to develop and maintain signal-processing applications for use in a real-time operational environment · ...

  • Advanced Technology Search

    Radar Software Engineer

    2 days ago

    Advanced Technology Search Denver, United States

    We are working on behalf of a leading maker of Air Defense Radar Systems. They provide RF, sensors and Software as part of a System that is sold to the Defense market. · Due to strong growth, they are looking for a · Senior to Principal level Radar Software Engineer ; who will d ...

  • Altamira Technologies

    Senior SCRUM Master

    3 days ago

    Altamira Technologies Denver, United States

    Altamira Technologies is seeking and Senior Scrum Master to join our world-class engineering team in Denver CO. In this role, you will join a small, highly-focus team working to develop and maintain signal-processing applications for use in a real-time operational environment. Th ...

  • Alta Mira

    Senior Software Engineer

    3 days ago

    Alta Mira Denver, United States

    Altamira Technologies is seeking Senior Software Engineers to join our world-class Space Systems engineering team in Denver, CO. As a candidate for this opportunity, you should have a good foundation in object-oriented software development and be experienced working in a LINUX or ...

  • iCST

    Senior Product Security Manager

    3 days ago

    iCST Denver, United States

    Our client is looking for a Senior Product Security Manager. It's a 6-months CTH position, Remote, no visa sponsorship. Salary range is $150 - $180K. · Summary: · Our client is the leader in securing homes and businesses across the country. The Senior Manager of Product Security ...

  • CACI International

    Software Manager/Release Train Engineer

    5 days ago

    CACI International Denver, United States

    Software Manager/Release Train Engineer (up to 25% profit sharing benefit)Job Category: EngineeringTime Type: Full timeMinimum Clearance Required to Start: TS/SCI with PolygraphEmployee Type: RegularPercentage of Travel Required: Up to 10%Type of Travel: LocalAs a? Software Manag ...

  • Reinventing Geospatial

    Java Software Engineer

    2 days ago

    Reinventing Geospatial Denver, United States

    Job Highlights: · Do you like the challenge of modernizing capabilities while developing critical enhancements? This systems modernization project incorporates the latest technologies in Cloud Computing, Microservices Architecture, AI/ML, and DevSecOps to provide Computer Vision ...

  • Reinventing Geospatial, Inc. (RGi)

    Java Software Developer

    13 hours ago

    Reinventing Geospatial, Inc. (RGi) Denver, United States

    Job Highlights: · Do you like the challenge of modernizing capabilities while developing critical enhancements? This systems modernization project incorporates the latest technologies in Cloud Computing, Microservices Architecture, AI/ML, and DevSecOps to provide Computer Vision ...