<p>Kforce's client in Sandy, UT is on the hunt for a seasoned Lead Cybersecurity Software Engineer to shape the tools and platforms that secure how our engineering teams build, deploy, and scale applications.</p> <p>Summary: In this hands-on role, you'll lead the charge in designing full-stack security solutions-from internal web apps to command-line tools-streamlining secure development practices across multi-cloud environments. This role isn't just about writing code. You will be a technical mentor, cross-functional collaborator, and security champion guiding our engineering enablement efforts. The position reports directly to our Director of Security Engineering Enablement and plays a critical role in advancing secure development initiatives.</p> <p>What You'll Do:</p> <ul> <li>Build Security Tools That Engineers Love: Design and develop internal security applications tailored for developers; Think multi-cloud, multi-tenant, and made-to-scale </li><li>Engineer Smart, Secure, Scalable Systems: From GCP to AWS, you will operate across platforms to support security controls and integrations with vendor-provided solutions </li><li>Mentor & Lead with Impact: Provide technical mentorship and lead by example in adopting secure coding practices and architectural design standards </li><li>Partner Across Teams: Work closely with Threat Detection, Vulnerability Management, Architecture, and DevOps to ensure security is baked into every layer </li><li>Analyze & Adapt: Take part in incident response, evaluate security gaps, and recommend improvements; Help make sure the same mistake isn't made twice </li><li>Stay Ahead of Threats: Research emerging technologies and industry trends to keep our systems a step ahead of the bad guys* Bachelor's degree with 6+ years in software/security engineering (or equivalent mix of education and experience) </li><li>Minimum 4 years directly focused on cybersecurity </li><li>Deep experience with Python and at least one of: C#, Java, Go </li><li>Agile and DevSecOps advocate with experience in CI/CD pipelines </li><li>Strong front-end or full-stack chops-familiarity with TypeScript, Node.js, etc. </li><li>Understanding of containerization and serverless (e.g., Lambda, ECS, EKS) </li><li>Familiarity with cloud-native security (IAM, VPCs, secrets management) </li><li>Familiarity with IaC tools like Terraform </li><li>Proficiency in AWS and a second cloud (GCP, Azure, OCI) </li><li>Well-versed in security architecture frameworks (NIST, ISO, etc.) </li></ul> <p>Bonus Points For:</p> <ul> <li>Certifications such as CISSP, OSCP, CEH, AWS/GCP security credentials </li><li>Hands-on experience with security tools like Fortify, Burp Suite, Wiz, or Veracode </li><li>Familiarity with observability platforms (e.g., CloudWatch, Splunk, New Relic) </li><li>Deployment strategies like Canary and Blue/Green </li><li>Past success in large enterprise environments (Fortune 1000) </li></ul>