Cyber Security Developer

Impact Networking, LLC - Bolingbrook, IL3.2

Full-timeEstimated: $93,000 - $130,000 a year
Skills
Overview
Impact Networking is seeking cybersecurity developers with solid IT, security, and development skills to implement and maintain custom assessment, sales, and reporting tools. The Impact Networking Managed IT Security division (MITSec) is a cybersecurity division responsible for assessing, supporting, and implementing solutions for client ranging in size from 10-500 users. Impact provides 100% maintenance and management of implemented security stacks.

The role of a Cybersecurity Developer is challenging and rewarding. It requires a strong technical skill set, business acumen, and effective communication skills. Being able to break down highly technical concepts to non-technical users is critical to client success. The overall focus at Impact is excellent customer service. We strive to ensure that our clients are happy, and that their networks are secure and running optimally. As a Cybersecurity Developer, you will develop high-priority offensive and defensive capabilities to solve critical security and business challenges. Developers are hired into positions directly supporting the MITSec division.

Responsibilities
The Cybersecurity Developer will perform the following tasks in each of corresponding process phase:

Pre-Assessment
Review and help to define/document pre-sales processes.
Develop relevant scripts/software tools to improve this process for clients.
Cybersecurity Assessment
Work with Cybersecurity Engineers and Analysts to review, refine, and develop assessment script functions and process enhancements to improve/automate:
Network asset discovery
Vulnerability and penetration testing (internal/external)
Web application testing
Social engineering
Wireless security testing
User behavior analysis
Access control review
Other relevant processes
Develop and maintain custom scripts/tooling to extract, transform, and report on results collected throughout the assessment process.
Define functions to convert raw assessment data into refined elements in Cybersecurity Assessment documentation to more clearly express to clients the issues and corresponding recommendations for their environments. This requires the ability to communicate highly technical concepts and details to potentially non-technical individuals.
Client Onboarding
Develop scripts and software tools which facilitate better implementation of recommended cybersecurity solutions which were determined to be appropriate and agreed upon during the Cybersecurity Assessment process. This requires the technical skills to integrate disparate systems and automate processes via scripts and APIs.
System Maintenance
Work with Project Managers/vCIOs and Cybersecurity Engineers to identify methods to improve security system maintenance. Systems include:
Vulnerability Management (VM)
Network Detection and Response (NDR)
Automated penetration testing
Security Information and Event Management (SIEM)
Next-Generation Antivirus (NGAV)
Endpoint Detection and Response (EDR)
Social engineering systems
Other related cybersecurity systems and solutions
Reverse engineer hardware and/or software to develop new exploitation capabilities and to develop mitigations that protect client systems.
Research and analyze sophisticated malware to thwart cyberattacks and identify new threats.
Things We Are Looking For
Proficiency with scripting languages such as Python and PowerShell
Strong understanding of web development including HTML5, CSS, JavaScript, PHP, etc.
Knowledge of risk assessment tools, technologies, and methods
Experience with antivirus software, intrusion systems, firewalls, and content filtering
Comprehension of secure networks, systems, and application architectures
Understanding of endpoint security including File Integrity Monitoring/Data Loss Prevention
Experience with disaster recovery, computer forensic tools, technologies, and methods
Knowledge regarding cybersecurity policies, standards, and procedures
Familiarity with compliance requirements, including HIPAA, PCI-DSS, SOX, GDPR, and SOC
Ability to communicate and understand network security and IT concepts to peers
Software development life-cycle (design/develop/implementation/debug/test) experience
Ability to read and use the results of mobile code, malicious code, and antivirus software
Experience with the following cybersecurity products and technologies is preferred:
Kali Linux
OpenVAS
Cisco Meraki UTM
Cylance EPP
Cisco Umbrella DNS
Proofpoint Email Protection
BitWarden Password Manager
Duo MFA
Arctic Wolf
Security Onion
KnowBe4
Programming language (C/C++/Java) experience is preferred, especially as it pertains to:
Kernel development and device driver development
Network/socket programming
Embedded systems development
Lower level languages (e.g., assembly, VHDL, Verilog)
Software reverse engineering/interactive debugging tools
Hardware reverse engineering tools
Computer networking and protocol analysis
Computer algorithms and data structures

Education/Certifications

College graduates with a focus on Computer Science, Cybersecurity, or Information Systems
Certifications including, but not limited to, CISA, CEH, GSEC/GPEN, CISSP, CISM, CASP
Valid driver's license and clean driving record
Ability to obtain a security clearance

Attributes

The ideal candidate has a desire for continual learning with excellent problem-solving, communication, and interpersonal skills who is:
Motivated
Innovative
Well-organized
Able to handle and prioritize multiple assignments
Able to communicate effectively both orally and written
Able to work effectively (independently and/or within teams) across functional areas in a collaborative environment