NMDP
We save lives through cell therapy.
Senior Information Security Engineer
Location
United States
Posted
30 days ago
Salary
Not specified
Bachelor Degree7 yrs expExperience acceptedEnglishAWSCloudSDLC
Job Description
• The Sr Information Security Engineer is responsible for designing, implementing, and continuously improving the technical security controls that protect internally developed applications, including cloud systems, containerized, and serverless workloads.
• This role is a hands-on application security specialist who performs deep secure code reviews, leads threat modeling, and drives remediation of complex vulnerabilities across the SDLC.
• Collaborating with other technical teams, this role ensures secure application development, deployment, and operation by assessing maturity, defining security requirements and guardrails, and delivering prioritized recommendations to improve pipeline controls, tooling, and integrations within the DevSecOps pipeline.
• Key responsibilities include conducting application security assessments, guiding secure software development practices, and advancing the maturity of application security capabilities.
• The Information Security Engineer partners with development, operations, and security teams to embed security into development practices and responds as a subject matter expert during application-related security incidents.
Job Requirements
- Bachelor’s degree in computer science, management information systems, or related field.
- Four years work experience in the areas of information security, systems or network administration, programming, or systems analysis may be substituted for a degree.
- Seven (7) or more years of experience in information security, software engineering, DevSecOps, SRE/Platform Engineering, or a closely related field.
- At least four (4) years of direct application security experience, including hands-on secure code review and vulnerability remediation guidance.
- Secure software development practices, secure software architecture principles, and common vulnerability classes with demonstrated ability to translate findings into practical engineering fixes.
- Cloud-native, containerized, and serverless security concepts; particularly AWS IAM and event-driven architectures.
- Demonstrated understanding of secure application development, DevSecOps practices, and application security technologies (e.g., SAST, DAST, SCA, container security).
- AI/ML security concepts relevant to internal AI development (data governance, model/inference service security, and common AI threat scenarios).
- Demonstrate experience with one or more of the following: Application Vulnerability Management, Identity and Access Management, and Data Loss Prevention process development, technical analysis and supporting technologies.
- Demonstrate understanding in forensic investigations, data recovery and the handling of digital evidence.
- Develop, implement, and maintain new or maturing security systems, protocols, and processes within a complex organization.
- Conduct security reviews and identify potential vulnerabilities and improvements in security design.
- Demonstrate excellent interpersonal skills in areas such as collaborative co-development, teamwork, facilitation, and negotiation.
- Excellent planning and organizational skills. An attitude of positive determination and accountability.
- Demonstrate strong troubleshooting and analytical skills.
- Able to work both independently and collaboratively in a demanding environment.
- Maintain extreme confidentiality of sensitive information.
Benefits
- NMDP offers regular, full-time employees medical, dental, vision, life and disability, accident/critical illness/hospital, well-being, legal, identity theft and pet benefits.
- Retirement, paid time off/holidays, leave and incentive plans are also offered to eligible employees.
- Please reference this link for more information: NMDP Benefit Information
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Security Engineer30 days ago
Full TimeRemoteTeam 5,001-10,000H1B Sponsor
Senior Security Architect responsible for implementing network segmentation projects for large enterprises
Python
Security Engineer30 days ago
Full TimeRemoteTeam 1,001-5,000Since 2012H1B Sponsor
CyberSecurity Advisor designing security solutions for Optiv clients.
Cyber Security
Kansas + 3 moreAll locations: Kansas, Oklahoma, Missouri, Texas
Security Engineer30 days ago
InternshipRemoteTeam 1,001-5,000Since 1977H1B No Sponsor
Cybersecurity intern supporting ACO Cyber team for energy innovation laboratory
Cyber SecurityPython
Associate Director, Cybersecurity Engineering
HumanaHumana Inc. (NYSE: HUM) is committed to putting health first – for our teammates, our customers, and our company. Through our Humana insurance services and CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it.
Security Engineer30 days ago
Full TimeRemoteTeam 10,001+Since 1961H1B Sponsor
Associate Director of Cybersecurity Engineering leading IAM strategies and solutions
AWSAzureCloudGoogle Cloud Platform
