Job Description :
Role: SECURITY DELIVERY MANAGER Location: Seattle, WA Duration: Long Term Employment: Contractual Summary As a Security Delivery Manager, you will evaluate customer applications and products security and advise them how to develop secure solutions. These could include operating systems, mobile frameworks, embedded devices, and cloud based solutions. Successful Security Delivery Manager can apply their security expertise to multiple domains, have experience leading teams, and possess an unending curiosity about technology. Our ideal candidate will be able to influence clients so they can achieve the right balance between their business needs and security requirements. Job Duties: Security Design and Assessment (25%): white box testing, static code analysis, review of dependencies and packages used in the code, and analysis of cryptographic functions and modules in code. Threat modeling of complex applications and hardware; review of client documentation on their application/product and all technical details about infrastructure and technology used; and build out test approach and prioritize security testing needs. Security Testing (25%): Penetration testing, execution of test cases in order of severity on the front end and back end of the application, common attack vectors are exploited, testing of cases formulated uniquely for the application to pinpoint specific unique functionality in the application, proof of concept. Reporting and Documentation (10%): Report generation with details about the scope and duration of the penetration test, a brief description of the application and service which was tested, test plan which was executed, important observations regarding the application or the service, further steps to improve the security posture of the application and the service and the list of security findings with exact details and evidence and security recommendation to fix it. Leadership activities (40%): Research, training development, mentoring, processes automatization & efficiencies driver. Minimum Requirements Programming experience including secure code review in any of the following: C/C++ or Python or Java. 4 years of experience with security design, implementation, or assessment. 4 years of experience in leading advanced security testing including penetration testing, web application and web service security, Android/iOS security, cryptography, blockchain technology, hardware security, kernel hacking and reverse engineering. Must have demonstrable experience leading teams. BA/BS in Computer Science, Computer Engineering, Information Security, Technology or related field. Up to 10% travel expected Preferred Requirements: 5+ years of programming experience in any of the following: C/C++ or Python or Java. 5+ years of consulting experience BA/BS in Computer Science, Computer Engineering, Information Security, Technology or related field. Public-facing research in areas of expertise (e.g. conference talks, tool development, blog posts) 2+ years of experience with popular cloud platforms (AWS/GCP/Azure/OCI)