eGRC Senior API Developer
ShorePoint, LLC · Herndon, VA · 6 days ago
EngineeringFull-time
About the role
The eGRC Senior API Developer will support the implementation of a modernized enterprise Governance, Risk and Compliance (eGRC) platform through automation, integration and process optimization.
Responsibilities
- Install, configure and deploy workflow technologies for use in a federal environment.
- Integrate Security Orchestration, Automation and Response (SOAR) solutions with RegScale and Axonius.
- Troubleshoot automation solutions, scripts and SOAR platforms.
- Develop custom scripts and content to support automation initiatives.
- Automate cybersecurity and compliance-related processes.
- Perform quality reviews of custom scripts and developed content.
- Practice good technique by utilizing configuration control and code retention tools such as GitHub.
- Participate in documented change control processes.
- Research and document cybersecurity processes, including Risk Management Framework (RMF) 2.0 and Cyber Supply Chain Risk Management (C-SCRM).
- Interview cyber practitioners to capture existing cybersecurity processes.
- Review and recommend enhancements to cybersecurity processes.
- Capture, refine and mature development processes and practices.
Requirements
- Bachelor’s degree in Information Management, Cybersecurity, Data or a related field.
- One or more of the following certifications: (ISC)2 Certified Information Security Professional (CISSP), CompTIA Security + (Sec+), CAP, CISA, CISM, SSCP, Network + (N+), Certified Ethical Hacker (CEH), PMP, CSM, PMI-ACP.
- 10+ years of relevant experience, including at least 5 years of development or scripting experience and 2 years of cybersecurity operations experience (excluding policy).
- SOAR development experience.
- Strong understanding of cybersecurity functions and processes.
- Strong understanding of RMF functions and processes.
- Experience utilizing code repositories such as GitHub.
- Experience developing custom scripts and content to support automation.
- Experience working with Microsoft Visio.
- Strong interpersonal skills to coordinate with and interview cyber practitioners.
- Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
Qualifications
- Must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.
Skills
- SOAR technologies and automation concepts.
- Scripting and software development practices.
- Cybersecurity functions, processes and automation.
- Configuration management, source code repositories and change control practices.
- Cybersecurity process analysis, documentation and process improvement.
Benefits
Comprehensive benefits package, including major carriers for health care providers. Highlights include 144 hours of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, and more.