Kforce's client in Sandy, UT is on the hunt for a seasoned Lead Cybersecurity Software Engineer to shape the tools and platforms that secure how our engineering teams build, deploy, and scale applications. Summary: In this hands-on role, you'll lead the charge in designing full-stack security solutions-from internal web apps to command-line tools-streamlining secure development practices across multi-cloud environments. This role isn't just about writing code. You will be a technical mentor, cross-functional collaborator, and security champion guiding our engineering enablement efforts. The position reports directly to our Director of Security Engineering Enablement and plays a critical role in advancing secure development initiatives. What You'll Do: * Build Security Tools That Engineers Love: Design and develop internal security applications tailored for developers; Think multi-cloud, multi-tenant, and made-to-scale * Engineer Smart, Secure, Scalable Systems: From GCP to AWS, you will operate across platforms to support security controls and integrations with vendor-provided solutions * Mentor & Lead with Impact: Provide technical mentorship and lead by example in adopting secure coding practices and architectural design standards * Partner Across Teams: Work closely with Threat Detection, Vulnerability Management, Architecture, and DevOps to ensure security is baked into every layer * Analyze & Adapt: Take part in incident response, evaluate security gaps, and recommend improvements; Help make sure the same mistake isn't made twice * Stay Ahead of Threats: Research emerging technologies and industry trends to keep our systems a step ahead of the bad guys* Bachelor's degree with 6+ years in software/security engineering (or equivalent mix of education and experience) * Minimum 4 years directly focused on cybersecurity * Deep experience with Python and at least one of: C#, Java, Go * Agile and DevSecOps advocate with experience in CI/CD pipelines * Strong front-end or full-stack chops-familiarity with TypeScript, Node.js, etc. * Understanding of containerization and serverless (e.g., Lambda, ECS, EKS) * Familiarity with cloud-native security (IAM, VPCs, secrets management) * Familiarity with IaC tools like Terraform * Proficiency in AWS and a second cloud (GCP, Azure, OCI) * Well-versed in security architecture frameworks (NIST, ISO, etc.) Bonus Points For: * Certifications such as CISSP, OSCP, CEH, AWS/GCP security credentials * Hands-on experience with security tools like Fortify, Burp Suite, Wiz, or Veracode * Familiarity with observability platforms (e.g., CloudWatch, Splunk, New Relic) * Deployment strategies like Canary and Blue/Green * Past success in large enterprise environments (Fortune 1000)