Kforce Inc
Base pay range
$36.55/hr - $49.45/hr
Responsibilities
Lead secure software development lifecycle (SDLC) practices across engineering teams
Design, implement, and maintain secure CI/CD pipelines, integrating tools for SAST, DAST, and dependency scanning (e.g., CodeQL, GitHub Advanced Security)
Develop, maintain, and monitor security controls across cloud environments, with a strong preference for AWS
Configure and manage security logging and monitoring solutions, particularly SIEM tools
Guide secure infrastructure using Terraform and other Infrastructure-as-Code (IaC) tools
Ensure security in serverless environments and API-based architectures
Implement and support Zero Trust Network Architecture, working with SASE platforms and identity-based access controls
Deploy and manage DLP (Data Loss Prevention) strategies across cloud services, endpoints, and email
Build and maintain Standard Operating Procedures (SOPs) and engineering documentation, including internal guides, playbooks, and runbooks
Identify security gaps in systems, workflows, or architecture and develop actionable solutions to address them
Perform security investigations and respond to alerts; fine‑tune detection rules to reduce false positives and increase detection accuracy
Build and implement automation to streamline and optimize repetitive security tasks and incident response procedures
Conduct threat modeling, risk assessments, and vulnerability management activities
Lead incident response and forensic investigations on both Windows and Linux systems
Work collaboratively with IT, DevOps, and engineering teams to drive security best practices
Requirements
5+ years in security engineering with a strong application and cloud security background
Deep understanding of secure development practices and integrating security into the Software Development Life Cycle (SDLC)
In‑depth knowledge of OWASP Top 10, CWE, and secure web practices
Hands‑on Experience With
Code scanning tools: CodeQL, SAST/DAST, dependency scanners
CI/CD tooling: GitHub Actions, Jenkins, or similar
SIEM: Implementation and log ingestion (e.g., Splunk, ELK, or equivalent)
Cloud security: AWS preferred; Experience with IAM, VPCs, KMS, and other AWS services
Proven experience designing and implementing Zero Trust architectures and working with SASE platforms (e.g., Zscaler, Netskope, or Prisma Access)
Strong experience with DLP solutions across endpoints, cloud, and messaging platforms
Strong grasp of networking protocols, TLS, DNS, HTTP, and web application architectures
Strong experience with both Linux and Windows environments
Experience with email security (e.g., DMARC, SPF, DKIM, phishing detection)
Ability to create and maintain technical documentation, SOPs, playbooks, and automation scripts
Proficiency in scripting or programming languages (Python, Bash, JS, etc.)
Familiarity with bug bounty platforms or responsible disclosure programs
Experience with security frameworks like Zero Trust, NIST 800‑207, or ISO 27001
Infrastructure as Code: Terraform (primary), CloudFormation or others
Comfortable with on‑call rotations
Containers and orchestration: Docker, Kubernetes, including RBAC, pod security policies, etc.
Serverless architectures: AWS Lambda or similar
Seniority level Associate
Employment type Contract
Job function Information Technology
Industries: Restaurants, Dairy Product Manufacturing, and Ranching
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
#J-18808-Ljbffr
Responsibilities
Lead secure software development lifecycle (SDLC) practices across engineering teams
Design, implement, and maintain secure CI/CD pipelines, integrating tools for SAST, DAST, and dependency scanning (e.g., CodeQL, GitHub Advanced Security)
Develop, maintain, and monitor security controls across cloud environments, with a strong preference for AWS
Configure and manage security logging and monitoring solutions, particularly SIEM tools
Guide secure infrastructure using Terraform and other Infrastructure-as-Code (IaC) tools
Ensure security in serverless environments and API-based architectures
Implement and support Zero Trust Network Architecture, working with SASE platforms and identity-based access controls
Deploy and manage DLP (Data Loss Prevention) strategies across cloud services, endpoints, and email
Build and maintain Standard Operating Procedures (SOPs) and engineering documentation, including internal guides, playbooks, and runbooks
Identify security gaps in systems, workflows, or architecture and develop actionable solutions to address them
Perform security investigations and respond to alerts; fine‑tune detection rules to reduce false positives and increase detection accuracy
Build and implement automation to streamline and optimize repetitive security tasks and incident response procedures
Conduct threat modeling, risk assessments, and vulnerability management activities
Lead incident response and forensic investigations on both Windows and Linux systems
Work collaboratively with IT, DevOps, and engineering teams to drive security best practices
Requirements
5+ years in security engineering with a strong application and cloud security background
Deep understanding of secure development practices and integrating security into the Software Development Life Cycle (SDLC)
In‑depth knowledge of OWASP Top 10, CWE, and secure web practices
Hands‑on Experience With
Code scanning tools: CodeQL, SAST/DAST, dependency scanners
CI/CD tooling: GitHub Actions, Jenkins, or similar
SIEM: Implementation and log ingestion (e.g., Splunk, ELK, or equivalent)
Cloud security: AWS preferred; Experience with IAM, VPCs, KMS, and other AWS services
Proven experience designing and implementing Zero Trust architectures and working with SASE platforms (e.g., Zscaler, Netskope, or Prisma Access)
Strong experience with DLP solutions across endpoints, cloud, and messaging platforms
Strong grasp of networking protocols, TLS, DNS, HTTP, and web application architectures
Strong experience with both Linux and Windows environments
Experience with email security (e.g., DMARC, SPF, DKIM, phishing detection)
Ability to create and maintain technical documentation, SOPs, playbooks, and automation scripts
Proficiency in scripting or programming languages (Python, Bash, JS, etc.)
Familiarity with bug bounty platforms or responsible disclosure programs
Experience with security frameworks like Zero Trust, NIST 800‑207, or ISO 27001
Infrastructure as Code: Terraform (primary), CloudFormation or others
Comfortable with on‑call rotations
Containers and orchestration: Docker, Kubernetes, including RBAC, pod security policies, etc.
Serverless architectures: AWS Lambda or similar
Seniority level Associate
Employment type Contract
Job function Information Technology
Industries: Restaurants, Dairy Product Manufacturing, and Ranching
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
#J-18808-Ljbffr