Teaching Strategies, LLC
  • Technology Development
  • Bethesda, MD, USA
  • Salary
  • Full Time

About us

Teaching Strategies is an innovative edtech organization focused on connecting teachers, children, and families. As front runners in the early childhood education market, we build dynamic, top-quality digital products that integrate all of the essential elements of a high-quality solution: curriculum, assessment, professional development, and family engagement.

What's in it for you

Teaching Strategies offers our employees a robust suite of benefits and other perks which include:

  • Company-sponsored events
  • Professional development and growth opportunities
  • Tuition assistance
  • Competitive compensation package
  • Medical, dental, and vision coverage for spouses, domestic partners, and children
  • Pre-tax medical and dependent care flexible spending accounts (FSA)
  • Health savings accounts with employer contributions
  • 401(k) plan with employer match
  • Company-sponsored life, short and long term disability insurance
  • Voluntary life and critical illness insurance
  • Paid parental leave programs
  • Flexible paid time off

Position overview

Teaching Strategies is looking for a talented Cybersecurity Engineer to join our team to assist in securing our SaaS products, infrastructure and to help protect our customer's sensitive data.

The Cybersecurity Engineer at Teaching Strategies will work with and assist the Director of Data Privacy & Security with planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks. You will be responsible for identifying threats and vulnerabilities in systems and software, then apply your skills to developing and implementing simple and effective solutions to defend against hacking, malware, ransomware and data loss.

Specific Roles and Responsibilities:

  • Collaborate with Web Operations and IT teams on securing both our cloud-based and hosted systems
  • Spearhead the vulnerability management initiatives for both systems and web applications, analyze and present vulnerabilities and misconfigurations in a prioritized and actionable manner
  • Manage Log Centralization Initiative
  • Take ownership of configuring and managing Vulnerability Scanning Tools, Web Application Firewall and Web Application Security Scanner
  • Assist in the adoption and implementation of compliance with privacy standards and regulations such as FERPA, CCPA, GDPR, COPPA, etc.
  • Analyze and document compliance with NIST 800-53 Moderate System control baseline
  • Conduct assessments against the NIST SP 800-53 security controls and work with the product development team to create remediation or mitigation strategies
  • Assist with selection and maintenance of a Governance, Risk and Compliance application
  • Review and provide recommendations on improving Cloud Service Provider Identity and Access Management implementations
  • Follow research to stay up to date with the latest security trends
  • Approach problems with creativity and flexibility
  • Be able to work autonomously

Qualifications:

  • Proven ability to manage and execute multiple projects simultaneously
  • Experienced in vulnerability analysis, prioritization and risk management tools (GRC) and techniques
  • Strong knowledge of web application security issues
  • Understand Kubernetes security risks and mitigation strategies
  • Experience with distributed systems and micro services-based architectures
  • Experience navigating and securing Cloud Environments: AWS, GCP and Heroku
  • Ability to assess cloud-based infrastructure to identify weaknesses and recommend corrective actions
  • Ability to deploy and use SIEMs and Vulnerability Scanners such as Rapid 7 Nexpose or Insight IVM
  • Familiar with dynamic and static testing techniques
  • Familiarity with secure coding practices and the OWASP top 10.
  • Ability to investigate the impact of security problems
  • BA or BS degree in Computer Science, Cybersecurity or related education
  • 5 years professional experience in a Cybersecurity Engineer role
  • CISSP, CISM, CEH, Sec+ or other comparable certification highly desired
  • Be passionate about information security
  • Excellent communication skills
  • Ability to be hands on and drive solutions to completion
  • Knowledge of the NIST SP 800 document series for guidance and the NIST Cybersecurity Framework

Preferred (but not required):

  • Hands-on experience with Netsparker or Burp
  • Firewall/VPN administration experience
  • Healthy sense of paranoia

Teaching Strategies, LLC is an equal opportunity employer of Minorities, Females, Protected Veterans and Individuals with Disabilities

Teaching Strategies, LLC
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

  • Sign Up For Job Alerts!

  • Share This Page
.