Security Engineer / Dearborn, MI

AB2 Consulting Inc

Dearborn, United States of America

8 days ago

Role details

Contract type

Permanent contract

Employment type

Full-time (> 32 hours)

Working hours

Regular working hours

Languages

English

Experience level

Senior

Dearborn, United States of America

Azure

Cloud Computing

Computer Security

Continuous Integration

DevOps

Infrastructure as a Service (IaaS)

Information Systems Security Architecture Professional

Network Security

Platform as a Service (PAAS)

Security Information and Event Management

Software Security

Bicep

Terraform

Static Application Security Testing

Vulnerability Analysis

Dynamic Application Security Testing

Oversee the operational use and effectiveness of application security tools, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), and Software Composition Analysis (SCA).
Collaborate with development and DevOps teams to integrate security testing into the CI/CD pipeline and ensure vulnerabilities identified by these tools are triaged and remediated effectively.
Provide guidance on interpreting scan results and prioritizing remediation efforts for application-level vulnerabilities.
Handling container security, ensuring base images are updated, * Proactively manage and conduct regular vulnerability assessments and remediation efforts for our infrastructure using Microsoft Defender for Cloud
Ensure continuous security posture management for cloud and hybrid environments, identifying misconfigurations and security weaknesses.
Work with relevant teams to prioritize and implement recommended security controls and patches identified through Defender for Cloud., As a key member of our Office of Cybersecurity, reporting to the Director of the organization, you'll play a critical part in shaping the future of mobility. If you're looking for …

In-depth knowledge and hands-on experience with Microsoft Azure security services, specifically Microsoft Defender for Cloud, Entra ID and Azure Sentinel (SIEM/SOAR)
Proficiency in assessing and hardening Azure environments, including IaaS, PaaS, and network security configurations.
Defining and enforcing policies for Terraform, ARM templates, or Bicep., * 10 - 12 years Application and/or Infrastructure security experience ISO experience or certification
Certifications (one or more highly preferred):
CISSP (Certified Information Systems Security Professional)
CISM (Certified Information Security Manager)
AZ-500 (Microsoft Certified: Azure Security Engineer Associate)
CySA+ (CompTIA Cybersecurity Analyst+)
CEH (Certified Ethical Hacker), Job Category: PD Operations and Quality Degree Level: Bachelor's Degree or equivalent Job Description: As a key member of our Office of Cybersecurity, reporting to the Direct…