• Responsible for identifying, assessing and mitigating security vulnerabilities in applications. • Work closely with development teams to integrate security practices into the SDLC. • Application security testing (SAST, SCA, DAST, IaC, containers, APIs, IAST, MAST, fuzzing), CI/CD pipelines and production monitoring; • Vulnerability management; • Monitoring and responding to application-related security incidents; • Knowledge of secure coding practices and security-focused source code reviews; • Application Security Posture Management (ASPM); • Assessment of application security process maturity and DevSecOps culture; • Comfortable engaging with professionals from other disciplines.

• Technical Information Security (IS) leadership: responsible for executing all contracted services, from centralizing and assigning requests to supervising work across all service lines. • General support for contract execution in administrative and technical-operational aspects. • Lead and mentor teams; • Coordinate and communicate effectively with various stakeholders, including internal and external teams; • Identify opportunities to improve information security processes and systems.

• Support agencies with information security program implementation and compliance initiatives. • Conduct interviews with business owners, technical teams, administrators, and third-party stakeholders to gather security and compliance requirements. • Develop, document, and maintain security policies, procedures, and governance artifacts. • Track and monitor Information Security implementation plans and remediation activities. • Perform compliance assessments against established security frameworks and control standards. • Review agency documentation and provide recommendations to strengthen security posture and compliance readiness. • Analyze existing business processes and identify opportunities for improvement and risk reduction. • Assist in developing corrective action plans (CAP) and Plans of Action & Milestones (POA&M). • Support multiple concurrent security and compliance initiatives while maintaining project timelines. • Prepare reports, findings, and compliance status updates for leadership and stakeholders. • Ensure alignment with state security standards, regulatory requirements, and industry best practices.

Role Description We are currently hiring a skilled Cyber Security Engineer (SOAR) to join our growing team. - Operational role on Splunk & XSOAR (our SOAR platform). - Should have significant experience with Python. Key Responsibilities - Will work closely on Palo Alto XSOAR platform to customize it as needed. - Will closely integrate existing Security Operation Center (SOC) systems through development and reuse of well-defined APIs. - Working with stakeholders for onboarding new data sources on Splunk (or any other SIEM tool) and perform periodic maintenance activities. - Deploy and evaluate external proof-of-concept tools. - Help with automation of various SOC related manual tasks. Qualifications - Experience in customization on any SOAR (Security Orchestration, Automation and Response) tool preferably Palo Alto XSOAR. - Development experience with Python and web frameworks (Django, Flask). - Experience with log management and/or SIEM technologies such as Splunk. Requirements - Web development frontend skills: JavaScript, jQuery, HTML/CSS. - Experience in creating and reusing Restful APIs to improve integration between existing and new security systems. - SQL database or any other DBs. - Good communication skills. - Highly motivated individual with the ability to self-start, prioritize, and multi-task. - Interest in cyber security, willingness to follow security best practices. - Ability to understand code written in other scripting languages. - Knowledge of incident response (SecOps). - Eagerness to look for and evaluate available open-source incident response/threat intelligence tools. - Strong focus on writing high quality technical documentation. - Good knowledge of Linux, git, nginx. Benefits - This is a remote position.