Security Engineer

POSTED: November 27, 2024
LOCATION: Orlando FL
POSITION ID: #247082
EMPLOYMENT TYPE: Contract
  • Location: Orlando, FL
  • Type: Contract
  • Job #247082

Security EngineerĀ 

Location: Fully Remote (Central or East Coast states only, East Coast hours required)

Position Overview:
We are seeking an experienced Security Engineer to join a team focused on securing APIs, implementing robust authentication mechanisms, and protecting sensitive data for an enhanced eCommerce platform. This role works collaboratively with development and architecture teams to ensure comprehensive security, safeguard customer information, and maintain GDPR compliance.

Key Responsibilities:

  • Develop and implement secure authentication and authorization protocols for RESTful APIs, including OAuth 2.0, OpenID Connect, JWT, and API keys.
  • Integrate Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions to enhance user account and data protection.
  • Ensure secure data communication through TLS/SSL and implement encryption for data at rest and in transit.
  • Collaborate with legal and compliance teams to uphold GDPR standards, incorporating privacy-by-design principles.
  • Implement data minimization, tokenization, encryption, and pseudonymization techniques to protect sensitive information.
  • Conduct regular security audits, vulnerability assessments, and penetration testing to identify and address potential risks.
  • Work with cross-functional teams to design and implement security measures tailored to eCommerce platform needs, such as payment processing and fraud prevention.

Qualifications:

  • Proven expertise in securing RESTful APIs and advanced knowledge of protocols such as OAuth 2.0, JWT, and OpenID Connect.
  • Strong understanding of data protection techniques, including encryption, tokenization, and pseudonymization.
  • Demonstrated experience ensuring GDPR compliance with a focus on data security and privacy.
  • Hands-on experience with cloud-based security, particularly Azure tools like Azure Key Vault and Azure Active Directory.
  • Familiarity with security concerns specific to eCommerce platforms.
  • Relevant certifications such as CISSP, CISA, CEH, or CompTIA Security+ are preferred but not required.

This role is an opportunity to contribute to the security and compliance of a platform, ensuring the protection of sensitive customer and passenger data.

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.
Review our Privacy Policy for more information.

We are uploading your application. It may take a few moments to read your resume. Please wait!