Information Assurance Software Security Engineer

Location: Kabul, Afghanistan
Date Posted: 11-03-2017
The Information Assurance Software Security Engineer will support the implementation, configuration and all subsequent modifications to all targeted applications, while ensuring adequate security and control measures.
 
Key responsibilities include the development and application of system account administration process improvements, standardized security build, data analysis and reporting, proper testing and change control techniques, structured troubleshooting techniques. Expected to be a visible internal spokesperson for application security and controls, charged with gaining widespread support of and compliance with application security requirements. This position will execute all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
 
The Engineer will work to resolve problems and keep management apprised of problem issues and resolution The analyst will be able to facilitate discussions, which may involve conflict, while maintaining composure. The Engineer should actively seek to maintain industry recognized security concepts, guidelines, and regulatory requirements and where these should be applied within the organization.
 
 
PRINCIPAL DUTIES AND JOB RESPONSIBILITIES:
  • Identification and evaluation of complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
  • Design, develop, and implement security and account data management for enterprise applications.
  • Must have development skills to implement changes relating to enterprise security applications.
  • Responsible for managing projects utilizing the full system development lifecycle.
  • Lead implementation meetings, workshops, and create training materials..
  • Development experience and familiarity with scripting languages such as: Python, PowerShell, Visual Basic, XSLT, Perl, Batch Files, AutoIT Scripts.
  • Ability to utilize industry support tools to support security building, auditing, reporting and support processes. (Excel, PowerPoint, Crystal Reports, etc.)
  • Ability to apply best practice in troubleshooting, testing techniques, and quality assurance.
  • Strong knowledge of information security systems including LDAP, Encryption Protocols, SSL, Certificates.
  • Experienced with large and complex systems having multi-layered architectures and use of Software Development Lifecycle methodology.
  • Expertise in application risk assessment and reporting of application design limitations and/or vulnerabilities.
 
KNOWLEDGE AND SKILLS REQUIRED:
  • Bachelor's Degree in Computer Science, Engineering, Information Systems or related area.
  • 5-7 years Information Assurance experience working with Enterprise software applications throughout the entire SDLC process
  • Experience in conducting technical auditing to determine root cause analysis of security-related events, policy and/or regulatory violations.
  • Knowledge of industry recognized security concepts, regulatory agencies, and security best practice.
  • Demonstrated ability to work with Business and IS stakeholders to develop enterprise-level design assurance meeting the business needs.
  • Proven competence to independently champion architecture principles with business owners, application owners, and technology partners.
  • Must possess strong interpersonal, verbal and written communication skills and have experience and willingness to teach/mentor others.
  • Skilled in creating, training and utilizing reporting tools and methods to support requirements for auditing, analysis, data reporting, etc.
  • Excellent project management, change management, process management, time management and organizational skills. Ability to lead and implement large and complex projects within approved budget and timelines. This will include all aspects such as facilitation of user meetings, business analysis, project planning, training, and implementation. Must have proven ability to estimate level of effort, duration, and anticipate and communicate multiple priorities.
  • Aptitude to present security models, regulatory and compliance directives, policies, standards, industry best practice and application security architecture in a clear and engaging way.
  
IronArch is not your typical consulting company. We have a value-driven culture that shapes the way we work together and with our clients. Our corporate values include:
  • People First: We think your growth and development is paramount – our people are the most valuable resource we have
  • Client Success: We have a genuine desire to help our clients and we like to have fun in the process
  • Integrity Always: We hold ourselves accountable and do the right thing all the time
 
IronArch Technology is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability.
 
or
this job portal is powered by CATS

IronArch Technology is an Equal Employment Opportunity (EEO) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, sex, color, religion, national origin, age, disability, veteran status, genetic data, religion or other legally protected status