Job Title: Technical Security Assurance Analyst Engineer
Location: Bellevue, WA (Remote)
Job Type: Contract
Job Description:
Must have skills –
Must be an arch on Java
5+ years of experience in security assurance, risk management, or security auditing.
• 5+ years of experience in security architecture, application security, or security consulting.
• Experience designing and reviewing architectures for web applications, mobile apps, and cloud environments (AWS, Azure, or Google Cloud).
• Identification and mitigation of security risks during the architectural and design phases.
• Strong knowledge of security standards and frameworks such as NIST CSF, NIST 800-53, CMMC, ISO 27001, OWASP benchmarks.
Qualifications:
• Bachelor’s degree in information security, Computer Science, or related field.
• 5+ years of experience in security assurance, risk management, or security auditing.
• 5+ years of experience in security architecture, application security, or security consulting.
• Experience designing and reviewing architectures for web applications, mobile apps, and cloud environments (AWS, Azure, or Google Cloud).
• Identification and mitigation of security risks during the architectural and design phases.
• Strong knowledge of security standards and frameworks such as NIST CSF, NIST 800-53, CMMC, ISO 27001, OWASP benchmarks.
• Solid understanding of encryption, identity management, secure coding practices, secure system design and network security.
• Experience conducting threat modelling and performing security risk assessments.
• Strong expertise in secure design principles for enterprise and cloud-based systems.
• Deep understanding of security technologies, firewalls, encryption, and identity management.
• Hands-on experience with security assessments, risk analysis, and threat modelling.
• Familiarity with cloud security (AWS, Azure, Google Cloud) systems.
• Experience with security tools such as vulnerability scanners, SIEM, and endpoint protection.
• Ability to collaborate with various team across the company to identify security risks, analyze them and develop mitigations.
