Remote Security Engineer (Software Focus)

Description:

• SysLogic, Inc. is seeking a talented and experienced Security Engineer (Software Focus) to join their team.
• The role involves identifying and mitigating potential security vulnerabilities for managed services clients.
• The Security Engineer will work closely with development teams to ensure applications are secure from external threats and comply with industry security standards.
• Responsibilities include conducting regular security assessments and penetration testing of software applications and products.
• The engineer will identify and prioritize potential security vulnerabilities and develop remediation plans.
• Collaboration with the development team is essential to implement secure coding practices and ensure adherence to security best practices.
• Staying updated with the latest security vulnerabilities, trends, and best practices is required.
• Participation in security architecture design and application design reviews is expected.
• The role includes providing training and mentorship to developers on coding practices to address identified vulnerabilities.
• The engineer should present past experience as a hands-on software developer, ideally utilizing the Microsoft Development stack.
• Active participation in reviewing penetration tests and vulnerability assessments with clients, both in person and remotely, is necessary.
• Training on secured development principles may be required in both remote and in-person settings.

Requirements:

• A Bachelor's degree in computer science, a related field, or equivalent experience is required.
• Candidates must have 5+ years of experience in application security or a related role.
• Strong knowledge of web application security vulnerabilities and best practices is essential.
• Direct knowledge of penetration testing processes and tools, with responsibility for remediating vulnerabilities, is required (e.g., Qualys, BurpSuite, Snyk, SCA).
• Experience with security assessment tools and techniques is necessary.
• A minimum of two years working as a Full Lifecycle Developer creating enterprise-based applications, preferably using the Microsoft Development stack (.NET, .NET Core, Azure), is required.
• Knowledge of secure coding practices and familiarity with common programming languages (e.g., C#, Java, C++, Python) is essential.
• Familiarity with security frameworks and standards (e.g., OWASP, NIST) is required.
• Excellent problem-solving and analytical skills are necessary.
• Strong oral and written communication and collaboration skills are essential.
• Experience working with embedded systems or device controls is a plus.
• Relevant certifications, such as Certified Ethical Hacker, Certified Information Security System Professional, or Certified Cloud Security Professional, are a plus.
• The ability to travel 4-6 times per year with no more than 20 days away from home in a calendar year is required.
• Candidates must reside in specific states (Wisconsin, Illinois, Iowa, Ohio, Michigan, Indiana, North Dakota, North Carolina, Florida, Arizona, and Arkansas) at the time of application, as relocation is not open.

Benefits:

• The position offers a Health Care Plan that includes Medical, Dental, and Vision coverage.
• A Retirement Plan (401k) is provided.
• Life Insurance options include Basic, Voluntary, and AD&D coverage.
• Paid Time Off is available for vacation, sick days, and public holidays.
• Family Leave is offered for maternity and paternity.
• Long Term Disability coverage is included.
• Opportunities for Training and Development are provided.
• The company promotes Work Life Balance.
• There is a commitment to No company politics.
• SysLogic fosters a Strong employee-focused culture.