Risk & Compliance Automation Engineer

Information Technology Requisition ID 6429 India

Description

Responsibilities 

  • Develop, build, test, deploy, and maintain software related to automating security compliance in accordance with best practices around the software development life cycle 
  • Incorporate NIST OSCAL into new and existing software products   
  • Collaborate with stakeholders to identify end-user requirements and specifications 
  • Produce efficient, elegant, and secure code based on requirements 
  • Develop and maintain technical documentation to guide current and future software development projects 
     

Qualifications and Experience 

  • Strong working knowledge of FedRAMP, NIST, ISO, SOC2 and other similar governance and compliance frameworks 
  • Strong working knowledge of NIST OSCAL  
  • Demonstrable experience working with programming languages such as PHP, Python, Java, etc. 
  • Demonstrable experience with Linux OS and cloud-based environments (AWS, Azure, etc.) 
  • Demonstrable experience working with relational databases like Oracle, SQLite, PostgreSQL, or MySQL databases 
  • Demonstrable experience with continuous integration and deployment using tools such as Jenkins, Docker 
  • Working knowledge of tools such as Jira, Git, Bitbucket, and Confluence 
  • Must possess strong presentation skills and communicate professionally in response to emails, customer responses, auditors, and internal teams. 
  • Self-Starter and must be comfortable interacting at all levels within both the internal and with customer organizations (i.e., from C-level to front-line technical staff) 
  • Organized and analytical, able to identify efficiencies and eliminate internal and external obstacles through creative and adaptive approaches 
  • 3-5 years Cyber Security, Information Assurance, Security/Solution Architect, Software Development or other related experience 
  • Bachelor’s Degree or equivalent experience and/or certifications (CISSP, CCSK, CCSP, or other related) desired 
  • Recent experience with or understanding of Qualys products is desired, but not required 

EEO Employer/Vet/Disabled