CyberSecurity Research Trainee - Axle Informatics
Rockville, MD 20852
About the Job
Axle Informatics is a scientific research and information technology company that offers innovative computer services, informatics, and bioresearch solutions to research centers and healthcare organizations around the globe. With expertise in software engineering, bioinformatics, data science, molecular research, and program management, we focus on developing and applying technological tools and scientific techniques to empower the world of research. We work with some of the top research organizations and facilities in the country including multiple institutes at the National Institutes of Health (NIH). Axle is offering this (Internship) postion hybrid.
Responsibilities
- Implementing and maintaining security controls in the development pipeline
- Automating security scans and tests
- Collaborating with development teams to integrate security into the development process
- Responding to and investigating security incidents
- Keeping up-to-date with security trends and best practices
- Participating in code and design reviews to identify potential security issues
- Providing support and guidance to development teams on security topics
- Secure Configuration Management: Ensure that all systems are configured in a secure and consistent manner, using tools like Ansible, Chef, or Puppet
- Vulnerability Management: Regularly scan for and remediate vulnerabilities in the infrastructure and applications
- Access Control: Implement and maintain proper access controls for both human and machine access to infrastructure and applications
- Network Security: Implement network security measures such as firewalls, VPNs, and intrusion detection/prevention systems
- Data Encryption: Ensure that sensitive data is properly encrypted both at rest and in transit
- Continuous Monitoring: Implement and maintain continuous monitoring of the infrastructure and applications, to detect and respond to security incidents in a timely manner
Qualifications:
- Knowledge of DevSecOps functions
- Successful candidates will have a basic knowledge of automation or programming using bash script, python, or any programming language
- Strong understanding of software development and deployment processes, including experience with one or more programming languages such as Python, Java, or Ruby
- Knowledge of software version control systems such as Git
- Experience with Linux/Unix operating systems and shell scripting
- Knowledge of cloud infrastructure and platforms, such as AWS or Azure
- Familiarity with containerization technologies such as Docker and Kubernetes.
- Understanding of security best practices and experience with security tools such as WAF, NIDS, and firewalls
- Strong problem-solving and analytical skills
- Good communication skills and the ability to work effectively in a team
- Familiarity with Agile methodologies
- Continual learning attitude, with a desire to stay current with new tools and technologies in the field of DevSecOps