Description: - Enable Skills-Based Hiring No Additional Details Commodity Code Intake : Commodity Code - script populated : PS0201 Access Type : GSSA : GS Systems Access Skills : BASIC QUALIFICATIONS 4 years experience in one or more technical roles (focusing on application security and cloud security). Prior experience in performing Threat Modeling or Secure Design Reviews or Secure Architecture Reviews. Degree in Computer Science, System/Computer Engineering, Cyber-Security, or Information Security. Practical knowledge of most common cybersecurity vulnerabilities - e.g., OWASP Top 10 and cloud security gaps. Strong experience with AWS security services and best practices (e.g., IAM, Security Groups, KMS, CloudTrail, GuardDuty, Inspector). Knowledge of authentication and authorization protocols, including OAuth, OIDC, and SAML. Knowledge of secure coding practices. Familiarity with Security standards such as OWASP Testing Guide, OWASP ASVS, NIST, and SANS Top 20. Knowledge of common security controls and how they apply to different architectures and systems, including but not limited to authentication, monitoring, input validation, secure configuration. Experienced in application vulnerability assessment and penetration testing. Proficient with security tools such as scanners, debuggers, HTTP proxies. Familiarity with modern and common web stack technologies (e.g., HTTP/2, HTML5, REST, etc.) and platforms (e.g., Spring Boot, React, NodeJS, Python, MS SQL, PostgreSQL, MongoDB, etc.). Knowledge of core cryptography (encoding, encryption, hashing, protocols) and their use and vulnerabilities in applications, such as TLS and algorithm-specific attacks. Strong English communication skills, both written and verbal, to effectively convey risks to technical and management stakeholders. Demonstrated ability to keep up-to-date with evolving security threats, vulnerabilities, and mitigation strategies through continuous learning and professional development. PREFERRED QUALIFICATIONS Understanding of network security vulnerabilities and associated risks. Proficient in operating system hardening and security protection Ability to conduct risk assessments for emerging technologies such as AI/ML. Experience doing architecture review of Mobile applications. Understanding Kubernetes security principles and practices. Proficiency in cybersecurity principles and practices related to Azure and GCP. Experience with securing trading and payments platforms, including knowledge of relevant compliance requirements (e.g., PCI DSS). Knowledge of data Protection Strategies (data encryption at rest/in transit, access control policies, data masking, tokenization, data loss prevention, regular backups, etc.) Experience with infrastructure-as-code tools such as Terraform, CloudFormation or AWS CDK. Experience in crafting custom proof-of-concept application exploits using testing tools/frameworks or scripting exploits in Python, Perl, JavaScript, Shell scripting, etc. Certifications and training in related areas (e.g., AWS Certified Security - Specialty, GCP Cloud Security Engineer, Azure Security Engineer Associate). Education : (No Value) Languages : (No Value) Prefer to Have : (No Value) Leave Coverage? : No Leave coverage for: : *N/A Is this worker being onboarded as part of the firmwide Lotus Program? : No