Security & Compliance Engineer
Description
Responsibilities
- Collaborate with teams of varied disciplines across nine solution groups within the Courts & Justice division to continually improve our security posture in all phases of the software lifecycle, including application development, cloud posture, and patch management.
- Become an expert on Tyler’s chosen security tools and help drive and facilitate their use throughout the division.
- Consult with teams to assess risk, identify appropriate mitigations, remediations, and timelines, and validate results.
- Create and feed dashboards to provide visibility of operational metrics from various systems to enable leadership to measure and manage adherence to internal service level agreements.
- Collaborate with the Director of Security to identify, document, and evangelize security and compliance best practices.
- Serve as a coordinator and contributor during incident response.
- Collaborate with division and corporate security and compliance teams to assess and mitigate risk.
- Implement and maintain automation of processes to help the business more efficiently meet service level agreements.
- Advocate for and contribute to an enterprise level culture of security to help the business make informed decisions in balance with competing objectives.
- Aggressively pursue technical and professional development, making use of internal and external resources to cultivate and grow your skills.
Qualifications
- Required
- You should value deadlines and regularly complete work on time.
- Bachelor’s degree in computer science, software engineering, applied cybersecurity. Equivalent experience may be considered.
- Solid understanding of all facets of cybersecurity principles, including end-user security hygiene, IT, secure application development, cloud security posture, and patch management.
- Experience with security scanning tools and technologies.
- Strong team player, comfortable working
- Excellent communication skills.
- Must be able to learn new technology independently and quickly.
- Solid skills programming and scripting skills
- Exposure to all tiers of software development and testing
- Understanding of build and deployment approaches and related technologies
- Preferred
- Experience with cloud technologies, Amazon Web Services preferred.
- Experience with threat-modeling.
- Experience with compliance frameworks such as SOC 2, CJIS, FedRAMP or other programs based upon NIST 800-53
#LI-SB1
#LI-onsite