Cayuse Holdings
  • 01-Dec-2022 to Until Filled (HST)
  • Cayuse Commercial Services
  • USA
  • Full Time

Cayuse Commercial Services (CCS) delivers fresh solutions to business challenges in the technology and business services environment. Services available are application development, business process outsourcing, data services, and professional services. Cayuse helps clients to achieve impactful outcomes such as improved efficiency, reduced cost, increased profitability and accelerated time to market.

Responsibilities:

  • IAC using Terraform
  • Password Policy Management
  • Checkmarx & Security Scans
  • Disaster Recovery
  • Code Deployments & Process Improvements
  • Maintain Automated Pipelines for AWS Apps
  • Coordinate teams, projects and participate in discussions with clients on daily basis
  • Participate in business development activities (including responses to RFP/I)
  • Design & Implement secure software development life cycle solutions based on various tools
  • Contribute to tool evaluation, selection and recommendation internally and to clients
  • Provide advisory to different groups (Technology, Developers, Digital Transformation, etc.)
  • Participate in execution of training program for different teams
  • Define secure software development life cycle for large projects and teams
  • Define applications security architecture elements
  • Define documentation of security requirements for applications (web, mobile, host, SOA, etc.).
  • Assistance with KPIs and KRIs related to security in applications
  • Coordinate the construction of labs and PoC to improve project and service delivery
  • Work with senior management on defining roadmaps, needs and provide short and mid-term forecasting
  • Collaborate with clients to define best approach to maximize the security posture
  • Contribute to R&D activities as a Subject Matter Expert & internal professional community

Minimum Qualifications:

  • At least 3 years of experience in the Application Development (DevOps)
  • At least 1 year of experience in Application Security Testing
  • Has a passion for Security, Agile, and DevOps
  • Experience in management and definition of security in the software development lifecycle (SDLC)
  • Working knowledge of Waterfall, Agile and primarily DevOps development methodologies
  • Experience in software development and SDLC in Java, Python, C#, etc...
  • Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Team City, etc...
  • Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis)
  • Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift, ...)
  • Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10
  • Knowledge of securing APIs
  • Experience in Web and/or Mobile applications and common vulnerabilities
  • Knowledge of security in micro-services is beneficial
  • Client focus
  • Communications skills including the ability to understand client process in any area in detail
  • Excellent coordination and communication skills
  • Business writing skills (capturing needs and writing it down on formal documents)
  • Reliable and with attention to detail
  • Ability to work alone and bring results

Preferred Qualifications:

  • At least 3 years of experience in the Application Development (DevOps)
  • At least 1 year of experience in Application Security Testing
  • Has a passion for Security, Agile, and DevOps
  • Experience in management and definition of security in the software development lifecycle (SDLC)
  • Working knowledge of Waterfall, Agile and primarily DevOps development methodologies
  • Experience in software development and SDLC in Java, Python, C#, etc...
  • Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Team City, etc...
  • Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis)
  • Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift, ...)
  • Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10
  • Knowledge of securing APIs
  • Experience in Web and/or Mobile applications and common vulnerabilities
  • Knowledge of security in micro-services is beneficial
  • Client focus
  • Communications skills including the ability to understand client process in any area in detail
  • Excellent coordination and communication skills
  • Business writing skills (capturing needs and writing it down on formal documents)
  • Reliable and with attention to detail
  • Ability to work alone and bring results

As an equal opportunity employer, Cayuse Commercial Services is committed to a diverse workforce. In order to ensure reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Veterans' Readjustment Act of 1974, and Title I of the Americans with Disabilities Act of 1990, applicants that require accommodation in the job application process may contact our Recruiting Department at (541) 278-8200 for assistance.

Cayuse Holdings
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Share This Page
  • Facebook Twitter LinkedIn Email
.
logo companies our story apprenticeship leadership careers contact