*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking a Senior SDET Software Development Engineer with Financial Services industry experience. Candidate will lead the manual and automated integration testing at the program level. Responsibilities: Develop and execute integration test strategy for assigned products Develop and execute test plans, develop test automation Lead the testing and automation function in collaboration with other team members Execute test plans and prepare clearly documented results, demonstrate the results to the product teams and management Review release notes of delivered functionality and create test plans focused on integration tests Work with the product teams on resolution of any outstanding issues within the release and post-release Categorize issues based on severity, clearing documents details of the issues in the tracking system Develop and execute functional and non-functional testing plans Keep track of open issues and retest closed issues. Provide direction to the other team members for testing integrated systems. Build new automation capabilities for integration testing, reconciliation testing, and data testing. Partner with internal business users and stakeholders to prioritize and develop requirements and testing for implementing new features and functionality including, but not limited to, Risk Platform applications. Manage Ovation system releases, identifying impact and enhancement opportunities, and communicating appropriately Support regression testing and introduction of required changes as new releases are introduced Provide support for the Ovations systems including, but not limited to, research and resolution of system issues, user support, and scheduled activities Create and maintain reports for ongoing business needs Lead day-to-day activities and delivery schedule of implementation partners engaged for various initiatives, when applicable Build upon/maintain professional relationships with key colleagues and vendors to ensure that the services and solutions provided meet the current and future needs Manage and communicate status reports and other key metrics Maintain documentation and process related requirements Assist with compliance and regulatory related activities Perform other duties as required Qualifications: Strong testing and QA automation background Strong technical background Strong customer orientation and excellent communication skills Ability to work in a fast-paced, confidential environment Understanding of systems development life cycle (SDLC), including proven experience in implementing software applications Exceptional attention to detail Must maintain high level of confidentiality and professionalism Consistent in performance and practices ethical, professional behavior Experience operating within an Agile delivery team Work well independently, yet is cooperative in working with team members Proficiency in test automation tools - like Gherkin, Cucumber, Selenium, or other automation frameworks. API and high-volume data testing experience Development of data testing and transformation tools Programming in Python, Java, other programming languages Strong data experience including SQL, databases Streaming and event driven system experience a plus. Message queuing and event sourcing tools like IBM MQ, Kafka Proficiency with MS word, PowerPoint, Excel, and Visio is preferred Experience with implementing and configuring business processes Deep understanding of data and structure, reporting, dashboards, strongly preferred Experience with Security testing preferred Clearing and Risk systems functional expertise and familiarity with technical offerings such as integrations and Core Connectors is preferred Education and/or Experience: Undergraduate Degree (or equivalent) Minimum of seven (7) years' experience working with manual and automation technologies as an expert with a clear understanding of core practices, processes, and terminology Minimum of five (5) years' experience implementing, enhancing, and supporting integration testing to address business problems and requirements in multiple functional areas Minimum of two (2) year of experience in financial services or capital markets
01/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Company is currently seeking a Senior SDET Software Development Engineer with Financial Services industry experience. Candidate will lead the manual and automated integration testing at the program level. Responsibilities: Develop and execute integration test strategy for assigned products Develop and execute test plans, develop test automation Lead the testing and automation function in collaboration with other team members Execute test plans and prepare clearly documented results, demonstrate the results to the product teams and management Review release notes of delivered functionality and create test plans focused on integration tests Work with the product teams on resolution of any outstanding issues within the release and post-release Categorize issues based on severity, clearing documents details of the issues in the tracking system Develop and execute functional and non-functional testing plans Keep track of open issues and retest closed issues. Provide direction to the other team members for testing integrated systems. Build new automation capabilities for integration testing, reconciliation testing, and data testing. Partner with internal business users and stakeholders to prioritize and develop requirements and testing for implementing new features and functionality including, but not limited to, Risk Platform applications. Manage Ovation system releases, identifying impact and enhancement opportunities, and communicating appropriately Support regression testing and introduction of required changes as new releases are introduced Provide support for the Ovations systems including, but not limited to, research and resolution of system issues, user support, and scheduled activities Create and maintain reports for ongoing business needs Lead day-to-day activities and delivery schedule of implementation partners engaged for various initiatives, when applicable Build upon/maintain professional relationships with key colleagues and vendors to ensure that the services and solutions provided meet the current and future needs Manage and communicate status reports and other key metrics Maintain documentation and process related requirements Assist with compliance and regulatory related activities Perform other duties as required Qualifications: Strong testing and QA automation background Strong technical background Strong customer orientation and excellent communication skills Ability to work in a fast-paced, confidential environment Understanding of systems development life cycle (SDLC), including proven experience in implementing software applications Exceptional attention to detail Must maintain high level of confidentiality and professionalism Consistent in performance and practices ethical, professional behavior Experience operating within an Agile delivery team Work well independently, yet is cooperative in working with team members Proficiency in test automation tools - like Gherkin, Cucumber, Selenium, or other automation frameworks. API and high-volume data testing experience Development of data testing and transformation tools Programming in Python, Java, other programming languages Strong data experience including SQL, databases Streaming and event driven system experience a plus. Message queuing and event sourcing tools like IBM MQ, Kafka Proficiency with MS word, PowerPoint, Excel, and Visio is preferred Experience with implementing and configuring business processes Deep understanding of data and structure, reporting, dashboards, strongly preferred Experience with Security testing preferred Clearing and Risk systems functional expertise and familiarity with technical offerings such as integrations and Core Connectors is preferred Education and/or Experience: Undergraduate Degree (or equivalent) Minimum of seven (7) years' experience working with manual and automation technologies as an expert with a clear understanding of core practices, processes, and terminology Minimum of five (5) years' experience implementing, enhancing, and supporting integration testing to address business problems and requirements in multiple functional areas Minimum of two (2) year of experience in financial services or capital markets
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Security Researcher. Candidate will contribute to a number of strategic research initiatives to develop the product and services catalogue. Primary focus for this role is to analyze ransomware samples and threat actor tools to gain insights for future product features, threat actor insights, and assist in the validation of our current capabilities. The ideal candidate will be a proficient reverse engineer with experience in analysing malware, have a strong understanding of cryptography used in ransomware, and the ability to develop tools to augment existing capabilities. Responsibilities: Technical: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaboration: Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Share knowledge with the community through engaging presentations, blog posts, papers, and active participation on social media channels, contributing to the broader information security ecosystem. Communication: Write high quality technical reports to enable our business to utilize the research effectively across the organization Articulate technical requirements and details to both highly technical and non-technical audience Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues A willingness to lead by example and participate actively in the workload Excellent English verbal and written communication and presentation skills Maintains a positive attitude and quickly adapts to change Passionate about information security Participation in security-focused communities, open-source development, and Intel sharing communities is a plus. Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc.) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools
01/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Security Researcher. Candidate will contribute to a number of strategic research initiatives to develop the product and services catalogue. Primary focus for this role is to analyze ransomware samples and threat actor tools to gain insights for future product features, threat actor insights, and assist in the validation of our current capabilities. The ideal candidate will be a proficient reverse engineer with experience in analysing malware, have a strong understanding of cryptography used in ransomware, and the ability to develop tools to augment existing capabilities. Responsibilities: Technical: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaboration: Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Share knowledge with the community through engaging presentations, blog posts, papers, and active participation on social media channels, contributing to the broader information security ecosystem. Communication: Write high quality technical reports to enable our business to utilize the research effectively across the organization Articulate technical requirements and details to both highly technical and non-technical audience Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues A willingness to lead by example and participate actively in the workload Excellent English verbal and written communication and presentation skills Maintains a positive attitude and quickly adapts to change Passionate about information security Participation in security-focused communities, open-source development, and Intel sharing communities is a plus. Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc.) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Kernel Ransomware Engineer. Candidate will contribute to the Windows agent's ability to prevent, detect, respond, and remediate attacks. In this role, you will drive enhancements in multiple product domains. This development will allow the product to better protect customers from the threat of ransomware. Responsibilities: Develops prototypes for new features, transforms prototypes into production quality code Translates learnings from prototyping effort into crisp functional specifications and project plans for new product features with minimal direction Independently drives new features, bug fixes, and performance enhancements Qualifications: Writes high-quality multithread-safe code in C++ in both Kernel-mode and user-mode Always makes sound decisions with respect to best engineering practices Develops high-quality code in Rust or a strong desire and capacity to learn quickly (Rust) Has shipped at least one production quality driver for Windows NT Strong knowledge of Win32 APIs and NT Kernel Internals Debugs memory corruption issues and improves end-to-end system performance Strong written and verbal communication skills Highly collaborative with a strong ability and desire to mentor and inspire others Practical professional experience in dealing successfully with ambiguity Knowledge and experience with Portable Executable format, Reverse Engineering Experience with Windows Mini-Filter drivers and Windows Filter Platform callout drivers Experience with SQL/Databricks and prior experience developing automated telemetry Familiarity with tools for Rust/C++ interoperability
01/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Security Services Company is currently seeking a Principal Kernel Ransomware Engineer. Candidate will contribute to the Windows agent's ability to prevent, detect, respond, and remediate attacks. In this role, you will drive enhancements in multiple product domains. This development will allow the product to better protect customers from the threat of ransomware. Responsibilities: Develops prototypes for new features, transforms prototypes into production quality code Translates learnings from prototyping effort into crisp functional specifications and project plans for new product features with minimal direction Independently drives new features, bug fixes, and performance enhancements Qualifications: Writes high-quality multithread-safe code in C++ in both Kernel-mode and user-mode Always makes sound decisions with respect to best engineering practices Develops high-quality code in Rust or a strong desire and capacity to learn quickly (Rust) Has shipped at least one production quality driver for Windows NT Strong knowledge of Win32 APIs and NT Kernel Internals Debugs memory corruption issues and improves end-to-end system performance Strong written and verbal communication skills Highly collaborative with a strong ability and desire to mentor and inspire others Practical professional experience in dealing successfully with ambiguity Knowledge and experience with Portable Executable format, Reverse Engineering Experience with Windows Mini-Filter drivers and Windows Filter Platform callout drivers Experience with SQL/Databricks and prior experience developing automated telemetry Familiarity with tools for Rust/C++ interoperability
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a strong Application Security Engineer. Candidate will work closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Perform ongoing reviews of application releases to ensure only secure and reviewed code is pushed to prod, with automation tasks as necessary. Develop scripts/automation to assist development teams with interpreting results from pipeline vulnerability verification reports to facilitate vulnerability remediation. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, Google Cloud Platform, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, Google Cloud Platform) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)
01/07/2025
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Financial Institution is currently seeking a strong Application Security Engineer. Candidate will work closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Perform ongoing reviews of application releases to ensure only secure and reviewed code is pushed to prod, with automation tasks as necessary. Develop scripts/automation to assist development teams with interpreting results from pipeline vulnerability verification reports to facilitate vulnerability remediation. Qualifications: Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, Google Cloud Platform, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API s (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, Google Cloud Platform) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)
Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: Chicago, IL Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools ( Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies
01/07/2025
Full time
Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: Chicago, IL Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools ( Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies
Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: DALLAS Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools (Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies
01/07/2025
Full time
Lead Associate Principal, Software Engineering Middleware SALARY: $150k - 170k plus 15% bonus LOCATION: DALLAS Open to h1b transfer, 3 days onsite and 2 days remote Looking for a candidate that is strong in Middleware integration Proxy/reverse Proxy. Oriented Middleware working with apigee, nginx, Apache in containers a must. system administration j2ee application services in containers message Kafka MQ cicd strong ansible terraform cloud formation sftp pki infrastructure multi platform unix linux windows aws Provide subject matter expertise for implementation and ongoing support of Middleware integration technologies in production, non-production Legacy and container-based environments. Responsibilities: Install, configure and maintain 3rd party software components classified as Middleware on multiple operating system platforms. Use subject matter expertise with products to advise on design and assist with development of applications using these tools. Configure production, development and testing environments and ensure the availability of these application services Write complex automation scripts using common automation tools, such as Jenkins and Ansible Provide performance tuning of components and services Design disaster recovery solutions for Middleware technologies to comply with business continuity objectives Resolve configuration related problems Resolve complex support issues in both production and non-production environments. Assist production support and development staff in debugging Middleware application defects. Create procedural and troubleshooting documentation related to Middleware products Participate in or lead moderately or high complex projects. Properly secure Middleware technologies Advise on industry best practices as it relates to new product selection. Manage day to day activities of the Middleware staff when called upon to do so. Management of Vulnerabilities, SORT's, Password rotations and Certificate renewals Qualifications: Expert understanding of: Proxy/Reverse Proxy-oriented Middleware (tools such as Apigee, Nginx, Apache in containers is a must) Systems administration and change management practices J2EE application services in containers and Legacy systems Message-oriented Middleware (tools such as Kafka, MQ) Internet/Web based technologies ITLT Best Practices Scripting and coding Network technologies CI/CD tools (Strong on Ansible, Terraform and Cloud Formation) Cloud native applications Technologies used to support microservices (like RKE) File transfer protocols including SFTP Encryption technologies (SSL/TLS, PKI Infrastructure management) Security controls as applied to software technologies. Education and/or Experience: Bachelor's degree in a related area 7-10 years of related experience with Minimum 7 years experience working in a distributed multi-platform environment. Minimum 3 supporting Middleware technologies
NO SPONSORSHIP Associate Principal, Security Engineering (Application Security) SALARY: $160k - $170k plus 15% bonus LOCATION: DALLAS, TX On site 3 days a week Application security, web applications, network applications. This position works closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities include: Candidate would perform Network/Application and Web Application security. Also create custom scripts and perform automation while also perform security assessments on both Legacy on prem and cloud environments. Candidate would also Identify, document and communicate vulnerabilities. Primary Duties and Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, GCP, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years' experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)
01/07/2025
Full time
NO SPONSORSHIP Associate Principal, Security Engineering (Application Security) SALARY: $160k - $170k plus 15% bonus LOCATION: DALLAS, TX On site 3 days a week Application security, web applications, network applications. This position works closely with other members of the Security Services, IT Development Teams, and Development teams to support application and software security initiatives, projects, and operations. Responsibilities include: Candidate would perform Network/Application and Web Application security. Also create custom scripts and perform automation while also perform security assessments on both Legacy on prem and cloud environments. Candidate would also Identify, document and communicate vulnerabilities. Primary Duties and Responsibilities: Application Security/Secure SDLC Build and optimize our security tooling stack, including SAST, DAST, SCA, and IaC. Implement DevSecOps principles and integrate tools into CI/CD pipelines and developer workflows. Define and improve secure SDLC processes - designing and implementing a developer friendly secure SDLC framework tailored to the delivery model. Automate security checks in CI/CD pipelines and developer tools to ensure continuous visibility and successful delivery. Build out process for threat modelling and secure design review process. Implement security for supply chain security, AI/ML application security, Open source etc. Review reports of the testing and conduct security risk assessments of the vulnerabilities. The use and maintenance of cloud and self-managed security scanning tools, manual source code reviews, and manual penetration assessments. Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams. Assist with application security vulnerability management including implementation of new vulnerability management tools. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, GCP, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming languages. Technical Skills: Deep knowledge of common web, API and cloud vulnerabilities (eg OWASP Top 10, CWE, auth flaws etc.). Deep understanding of vulnerabilities, reachability, exploitability and how they affect applications. Familiarity with secure coding principles across multiple languages (eg python, Java, JavaScript etc.). Knowledge of how security fits into platform engineering and cloud native stacks. Deep understanding of application layer attacks and defense mechanisms (CCS, CSRF, SQLi, XXE, SSRF, broken access control etc.). Familiarity with API security (REST & GraphQL), Postman, OOWASP top 10). Proficiency with artifact repositories and implementing security controls around component ingestion. Knowledge of shift-left strategies and embedding controls early in the development life cycle. Familiarity with Kubernetes security, container scanning and cloud infrastructure as code. Ability to triage and prioritize vulnerabilities based on exploitability, impact and business context. Strong proficiency application security and vulnerability management. Strong experience with custom Scripting (python, C++, PowerShell, bash, etc.) and process automation. Some proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.). Knowledge of security architecture design and principles including confidentiality, integrity and availability. Knowledge of automated code scanning tools and development pipeline tools. Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP). Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP). Fundamental understanding of network and data communications technologies Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments. Knowledge of Secure DevOps concepts. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 5+ Years' experience in Application Security or Information Security environment. Experience writing scripts and working with containers in a CI/CD pipeline. Exposure to security architecture design through application development or knowledge of security concepts/best practices. Certificates or Licenses: Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired. Professional network and/or security certifications a plus (ie, GIAC, CISSP, CISA, CISM, CRISC) Cloud security automation certifications a plus (ie GCSA) Penetration testing certifications a plus (ie OSCP, GWAPT)
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a DevOps Engineer. This engineer will focus heavily on automation, DevOps, CI/CD, Scripting, Terraform, AWS, etc. Responsibilities: Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress Participate in code reviews, defect triage, and other software development activities Continuously research and evaluate emerging technologies and industry trends to improve automation strategies and tools Work with the DevOps team to integrate automation tools into the CI/CD pipeline and automate deployment processes Understand Cloud Native applications running on Kubernetes within AWS. Create procedural and troubleshooting documentation related to cloud native applications. Qualifications: Bachelor's degree in a related area 7-10 years of related experience Minimum 5 years experience on Scripting/devOps Automation Minimum 3 years experience working with AWS services Minimum 3 supporting and maintaining Flexibility to be on call from 5 PM to 7 AM for 3 months per year Proven experience as a DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.). Strong hands-on experience with Terraform for cloud infrastructure provisioning. Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar). Solid understanding of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.). Strong understanding of software development methodologies, testing concepts, and Agile development practices, including Scrum and Kanban
01/07/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a DevOps Engineer. This engineer will focus heavily on automation, DevOps, CI/CD, Scripting, Terraform, AWS, etc. Responsibilities: Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress Participate in code reviews, defect triage, and other software development activities Continuously research and evaluate emerging technologies and industry trends to improve automation strategies and tools Work with the DevOps team to integrate automation tools into the CI/CD pipeline and automate deployment processes Understand Cloud Native applications running on Kubernetes within AWS. Create procedural and troubleshooting documentation related to cloud native applications. Qualifications: Bachelor's degree in a related area 7-10 years of related experience Minimum 5 years experience on Scripting/devOps Automation Minimum 3 years experience working with AWS services Minimum 3 supporting and maintaining Flexibility to be on call from 5 PM to 7 AM for 3 months per year Proven experience as a DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.). Strong hands-on experience with Terraform for cloud infrastructure provisioning. Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar). Solid understanding of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.). Strong understanding of software development methodologies, testing concepts, and Agile development practices, including Scrum and Kanban
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.
01/07/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.
01/07/2025
Full time
*Hybrid, 3 days onsite, 2 days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal, Research Technology Engineer. This engineer will focus on strategy, research, and development of new technologies for observability/enterprise level monitoring. This role will be in an R&D lab, doing testing and engineering of new technologies within containerization, Cloud, and DevOps practices. Responsibilities: Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology initiatives for hybrid cloud and on-premises infrastructure within company Data Centers. Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives. Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability. Collaborate with various partner teams across technology, security, and business to provide technical consultation as part of projects and daily business activities. Create technical knowledge and guideline documentation for new and existing technologies to assist partner teams with knowledge transfer for execution and operations. Develop and maintain scalable DevSecOps pipelines, including CI/CD, Infrastructure as Code, and automated security scanning. Qualifications: Bachelor's degree or higher in a technical field 10+ years of progressive experience as a senior/lead engineer in a DevOps, SRE or infrastructure-focused role Deep expertise in cloud computing platforms (AWS, Azure, GCP, etc.) and infrastructure as code using tools like Terraform, Ansible, etc. Strong background in designing and maintaining CI/CD pipelines, with experience integration security testing and compliance Proficient in Scripting and programming languages such as Python, Bash or Go Understanding of traditional on-premises data center technologies and hybrid cloud architecture Experience developing CI/CD workflows using tools like Github Actions, Jenkins, Azure DevOps Pipelines, AWS CodePipeline, etc Familiarity with GitOps driven deployment tooling with solutions using tools like ArgoCD, FluxCD, etc In-depth knowledge of Observability and enterprise-level monitoring, logging, and alerting solutions through tools like Prometheus, Elasticsearch, Grafana, etc Experience with Cloud native technologies such as Kubernetes, ECS or Azure Container instances. Understanding of enterprise-grade networking technologies, including Routers, Switches, Firewalls and load balancers. Knowledge of network security protocols and certificate-based authentication Deeply experienced with infrastructure as code, like Terraform, OpenTofu or Pulumi Experience working with authentication protocols and suites ( LDAP, Kerberos, SAML, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc. Solid understanding of common database technologies on-premises and in the cloud (PostgreSQL, MongoDB, Redis, MSSQL, etc ), data field hardening and encryption, access controls, high-availability, etc.
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal Security Researcher. This principal will reverse engineer malicious binaries to find ransomware samples. The principal must have experience with languages such as Python, Ruby, C++, Rust, and cryptographic algorithms. Responsibilities: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new company products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Write high quality technical reports to enable our business to utilize the research effectively across the organization Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc ) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools
01/07/2025
Full time
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Principal Security Researcher. This principal will reverse engineer malicious binaries to find ransomware samples. The principal must have experience with languages such as Python, Ruby, C++, Rust, and cryptographic algorithms. Responsibilities: Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new company products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Collaborate with partner Research and Data Science teams on projects and to bring new ideas and technology to customers Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Write high quality technical reports to enable our business to utilize the research effectively across the organization Qualifications: Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc ) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Product Security Engineer. This role is focused on reverse engineering, analysing malware, ransomware, ability to develop tools to augment existing capabilities, etc. Responsibilities Design and implement security test harnesses from scratch to simulate real-world ransomware behavior Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals Triage, reproduce, and analyze security findings against our agent and libraries Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required) Qualifications 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products Experience building fuzzers or integrating existing fuzzing frameworks for native code Experience and capability in building automated test harnesses from the ground up Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors Proficient in C/C++ and Python, with solid experience calling with Windows APIs Experience reviewing and validating security findings Comfortable researching and suggesting security features end-to-end and creating technical content Rust development experience, particularly around FFI or unsafe code Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows
01/07/2025
Full time
*We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for a Senior Product Security Engineer. This role is focused on reverse engineering, analysing malware, ransomware, ability to develop tools to augment existing capabilities, etc. Responsibilities Design and implement security test harnesses from scratch to simulate real-world ransomware behavior Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals Triage, reproduce, and analyze security findings against our agent and libraries Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required) Qualifications 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products Experience building fuzzers or integrating existing fuzzing frameworks for native code Experience and capability in building automated test harnesses from the ground up Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors Proficient in C/C++ and Python, with solid experience calling with Windows APIs Experience reviewing and validating security findings Comfortable researching and suggesting security features end-to-end and creating technical content Rust development experience, particularly around FFI or unsafe code Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows
Senior DevOps Engineer Salary: open + bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 7+ years related experience 5+ years DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.) Strong hands-on experience with Terraform for cloud infrastructure provisioning Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar) 3+ years of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.) Responsibilities Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Act as a mentor and thought leader on DevOps culture, encouraging process ownership and continuous improvement across teams. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress
01/07/2025
Full time
Senior DevOps Engineer Salary: open + bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 7+ years related experience 5+ years DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.) Strong hands-on experience with Terraform for cloud infrastructure provisioning Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar) 3+ years of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.) Responsibilities Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Act as a mentor and thought leader on DevOps culture, encouraging process ownership and continuous improvement across teams. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress
Senior DevOps Engineer Salary: open + bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 7+ years related experience 5+ years DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.) Strong hands-on experience with Terraform for cloud infrastructure provisioning Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar) 3+ years of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.) Responsibilities Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Act as a mentor and thought leader on DevOps culture, encouraging process ownership and continuous improvement across teams. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress
01/07/2025
Full time
Senior DevOps Engineer Salary: open + bonus Location: Chicago, IL or Coppell, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 7+ years related experience 5+ years DevOps Engineer with a strong automation background Deep knowledge of CI/CD tools (eg, GitHub Actions, GitHub, Jenkins - Groovy, K8s, helm, etc.) Strong hands-on experience with Terraform for cloud infrastructure provisioning Proficiency in Linux administration and Shell Scripting (Bash, Python, or similar) 3+ years of AWS services (eg, EC2, S3, RDS, Lambda, CloudWatch, IAM, etc.) Responsibilities Identify, analyze, and automate repetitive or manual tasks across infrastructure and deployments. Design, implement, and manage CI/CD pipelines to support agile development and rapid releases. Script solutions using Bash, Python, or similar tools to streamline DevOps processes. Advocate for and enforce DevOps and security best practices in infrastructure and deployment processes. Collaborate with development teams to identify opportunities for automation and implement solutions to improve quality and efficiency. Act as a mentor and thought leader on DevOps culture, encouraging process ownership and continuous improvement across teams. Lead automation efforts in an Agile development environment, including planning, estimating, and reporting automation progress
Senior Security Engineer Salary: Open + Bonus + Stock Options Location: Remote *We are unable to provide sponsorship for this role* Qualifications Product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products Experience building fuzzers or integrating existing fuzzing frameworks for native code Experience and capability in building automated test harnesses from the ground up Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors Proficient in C/C++ and Python, with solid experience calling with Windows APIs Experience reviewing and validating security findings Comfortable researching and suggesting security features end-to-end and creating technical content Preferred Rust development experience, particularly around FFI or unsafe code Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows Responsibilities Design and implement security test harnesses from scratch to simulate real-world ransomware behavior Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals Triage, reproduce, and analyze security findings against our agent and libraries Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required)
01/07/2025
Full time
Senior Security Engineer Salary: Open + Bonus + Stock Options Location: Remote *We are unable to provide sponsorship for this role* Qualifications Product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products Experience building fuzzers or integrating existing fuzzing frameworks for native code Experience and capability in building automated test harnesses from the ground up Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors Proficient in C/C++ and Python, with solid experience calling with Windows APIs Experience reviewing and validating security findings Comfortable researching and suggesting security features end-to-end and creating technical content Preferred Rust development experience, particularly around FFI or unsafe code Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows Responsibilities Design and implement security test harnesses from scratch to simulate real-world ransomware behavior Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals Triage, reproduce, and analyze security findings against our agent and libraries Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required)
Principal, Security Researcher Salary: Open + Bonus + Stock Options Location: Remote *We are unable to provide sponsorship for this role* Qualifications Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues Preferred Participation in security-focused communities, open-source development, and Intel sharing communities Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc.) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools Responsibilities Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Write high quality technical reports to enable our business to utilize the research effectively across the organization Articulate technical requirements and details to both highly technical and non-technical audience
01/07/2025
Full time
Principal, Security Researcher Salary: Open + Bonus + Stock Options Location: Remote *We are unable to provide sponsorship for this role* Qualifications Strong capabilities in reverse-engineering Windows binaries and applications. Strong familiarity with Windows development practices, low level operating system concepts, and networking. Proficiency with development in Scripting languages such as Python or Ruby. Proficiency with development in compiled languages such as C, C++ and/or Rust. Experience in auditing implementations of cryptographic algorithms to identify security issues Preferred Participation in security-focused communities, open-source development, and Intel sharing communities Proficiency with development in CUDA Advanced degree in a technical field (Computer Science, Electrical Engineering, Math, Physics, etc.) Track record of advancing offensive security research field through vulnerability discoveries, research publications, and/or developing security tools Responsibilities Reverse engineer malicious or unknown binaries to find insights and intelligence in ransomware samples and threat actor toolkits Use and develop tools to bypass software protection and binary packing techniques. Identify & develop proof-of-concept tools leveraging your security research background to help assist and scale threat research related tasks Partner with applied researchers to enable the development of new products and tools Develop tools for the community, enabling access to our research and best practices, fostering knowledge sharing, and empowering others to conduct their own experiments and learn from our threat research methodology Cultivate global collaborations with security researchers to exchange knowledge, stay updated on emerging threats, and build partnerships with offensive security researchers to enhance our defensive capabilities and embrace cutting-edge offensive security research. Write high quality technical reports to enable our business to utilize the research effectively across the organization Articulate technical requirements and details to both highly technical and non-technical audience
Lead Engineer - IBM MQ Salary: Open + Bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 10+ years of hands-on experience administering IBM MQ in a complex enterprise environment. Strong understanding of core IBM MQ concepts (Queue Managers, Queues, Channels, Clustering, Publish/Subscribe, Security). Proficiency in administering IBM MQ on [Specify primary OS, eg, Linux, Windows]. Proven troubleshooting skills in diagnosing and resolving complex MQ issues. Experience with Scripting languages (eg, Bash, Python, Perl) for automation. Understanding of networking concepts (TCP/IP, DNS, Firewalls, load balancers) as they relate to MQ. Responsibilities Install, configure, and maintain IBM MQ software (Queue Managers, Clients) on RHEL. Perform version upgrades, apply fix packs, and manage patching cycles according to best practices and security requirements. Configure MQ objects, including Queue Managers, Queues (Local, Remote, Alias, Model), Channels, Listeners, Clusters, Topics, and Subscriptions. Monitor MQ system performance metrics, message throughput, and latency. Identify performance bottlenecks and implement tuning adjustments at the Queue Manager, channel, and queue levels. Analyze MQ logs and trace data to optimize configurations. Provide expert-level troubleshooting for MQ-related issues, including connectivity problems, message delivery failures, security errors, and performance degradation. Act as a primary point of contact for application teams regarding MQ connectivity and messaging issues. Respond to incidents, diagnose root causes, and implement corrective actions, participating in on-call rotation if applicable. Monitor resource utilization (CPU, memory, disk space, message depths) and forecast future capacity needs. Design and implement scalable MQ solutions, including clustering and distributed queuing, to meet growing business demands. Develop, implement, test, and maintain disaster recovery (DR) procedures for the MQ environment.
01/07/2025
Full time
Lead Engineer - IBM MQ Salary: Open + Bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote Qualifications Bachelor's degree 10+ years of hands-on experience administering IBM MQ in a complex enterprise environment. Strong understanding of core IBM MQ concepts (Queue Managers, Queues, Channels, Clustering, Publish/Subscribe, Security). Proficiency in administering IBM MQ on [Specify primary OS, eg, Linux, Windows]. Proven troubleshooting skills in diagnosing and resolving complex MQ issues. Experience with Scripting languages (eg, Bash, Python, Perl) for automation. Understanding of networking concepts (TCP/IP, DNS, Firewalls, load balancers) as they relate to MQ. Responsibilities Install, configure, and maintain IBM MQ software (Queue Managers, Clients) on RHEL. Perform version upgrades, apply fix packs, and manage patching cycles according to best practices and security requirements. Configure MQ objects, including Queue Managers, Queues (Local, Remote, Alias, Model), Channels, Listeners, Clusters, Topics, and Subscriptions. Monitor MQ system performance metrics, message throughput, and latency. Identify performance bottlenecks and implement tuning adjustments at the Queue Manager, channel, and queue levels. Analyze MQ logs and trace data to optimize configurations. Provide expert-level troubleshooting for MQ-related issues, including connectivity problems, message delivery failures, security errors, and performance degradation. Act as a primary point of contact for application teams regarding MQ connectivity and messaging issues. Respond to incidents, diagnose root causes, and implement corrective actions, participating in on-call rotation if applicable. Monitor resource utilization (CPU, memory, disk space, message depths) and forecast future capacity needs. Design and implement scalable MQ solutions, including clustering and distributed queuing, to meet growing business demands. Develop, implement, test, and maintain disaster recovery (DR) procedures for the MQ environment.
Senior IAM Engineer - ForgeRock Salary: $150k-$160k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 7+ Years Identity Access Management (IAM) experience Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Responsibilities Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security.
01/07/2025
Full time
Senior IAM Engineer - ForgeRock Salary: $150k-$160k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 7+ Years Identity Access Management (IAM) experience Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Responsibilities Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security.
Senior IAM Engineer - ForgeRock Salary: $150k-$160k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 7+ Years Identity Access Management (IAM) experience Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Responsibilities Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security.
01/07/2025
Full time
Senior IAM Engineer - ForgeRock Salary: $150k-$160k + bonus Location: Chicago, IL or Dallas, TX Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree 7+ Years Identity Access Management (IAM) experience Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Responsibilities Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Research, recommend, and implement changes to procedures and systems to enhance systems security.
Senior Software Engineer - Middleware Salary: Open Location: Oak Brook, IL Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* *This role is not open to C2C* Qualifications Bachelor's Degree 5+ years of job-related experience Deep understanding of Agile methodologies and Scrum Experience in creating technical documentation Experience with Microsoft technology stack, including .NET, C#, Azure, AWS, SQL, Visual Studio Experience with GIT, No SQL databases, messaging systems, Distributed Architecture. Experience in creating technical documentation Thorough understanding of OOP, SOLID, RESTful services, dependency injection and cloud development Ability to work well with others and provide clear direction to a development team Strong analytical and problem-solving skills Understanding of CI/CD (continuous integration/continuous delivery) tools, frameworks and deployment processes Working experience in a cloud platform Azure or AWS Responsibilities Work using Agile methodologies such as Scrum to develop Middleware Serve as primary point person and scrum team representative for interactions with product owner, Front End, Middleware, DeVos, and firmware functional teams Participate in technical assessment, scoping and management of changes to the code-base on new business requirements, product enhancements and other change requests Analyze requirements, collaborate with architects and senior engineers to produce thoughtful software designs of moderate scope and complexity Maintain domain specific software knowledge of key software application features, frameworks, or components Lead and contribute to technical discussions in community of practice, design review, pull request, or other technical meeting forums Collaborate with domain experts, such as infrastructure, database, and Front End, as the team develops features and platform enhancements Lead offshore teams to design and develop features, and burn down technical debt Ensure adherence to coding standards and other best practices to create reusable code Provide mentoring and coaching to junior engineers to increase software capability of the Middleware development team. Responsible for complying with the security requirements set forth by the Information Security team and the established ISO 27001 Security Roles, Responsibilities, and Authorities Document found in the ISMS Document Library
01/07/2025
Full time
Senior Software Engineer - Middleware Salary: Open Location: Oak Brook, IL Hybrid: 3 days onsite, 2 days remote *We are unable to provide sponsorship for this role* *This role is not open to C2C* Qualifications Bachelor's Degree 5+ years of job-related experience Deep understanding of Agile methodologies and Scrum Experience in creating technical documentation Experience with Microsoft technology stack, including .NET, C#, Azure, AWS, SQL, Visual Studio Experience with GIT, No SQL databases, messaging systems, Distributed Architecture. Experience in creating technical documentation Thorough understanding of OOP, SOLID, RESTful services, dependency injection and cloud development Ability to work well with others and provide clear direction to a development team Strong analytical and problem-solving skills Understanding of CI/CD (continuous integration/continuous delivery) tools, frameworks and deployment processes Working experience in a cloud platform Azure or AWS Responsibilities Work using Agile methodologies such as Scrum to develop Middleware Serve as primary point person and scrum team representative for interactions with product owner, Front End, Middleware, DeVos, and firmware functional teams Participate in technical assessment, scoping and management of changes to the code-base on new business requirements, product enhancements and other change requests Analyze requirements, collaborate with architects and senior engineers to produce thoughtful software designs of moderate scope and complexity Maintain domain specific software knowledge of key software application features, frameworks, or components Lead and contribute to technical discussions in community of practice, design review, pull request, or other technical meeting forums Collaborate with domain experts, such as infrastructure, database, and Front End, as the team develops features and platform enhancements Lead offshore teams to design and develop features, and burn down technical debt Ensure adherence to coding standards and other best practices to create reusable code Provide mentoring and coaching to junior engineers to increase software capability of the Middleware development team. Responsible for complying with the security requirements set forth by the Information Security team and the established ISO 27001 Security Roles, Responsibilities, and Authorities Document found in the ISMS Document Library
