This Job Vacancy has Expired!

Application Security

Request Technology - Robyn Honquest

Posted on Jul 9, 2022 by Request Technology - Robyn Honquest

Dallas, TX 75201
IT
Immediate Start
$119k - $132k Annual
Full-Time

NO SPONSORSHIP

Application Security

Security Initiatives, Docker, Containers and Scripting. vulnerability management and administration automated security scanning develop scripts and write containers troubleshoot developer issues applications penetration testing application vulnerability management CICD pipelines Docker Jenkins Github SVN Terraform JAVA C++ Python JavaScript OWASP.

Responsibilities:

CICD Pipeline

Develop scripts and write containers to integrate Security tools into the development pipeline

Assist development teams with interpreting results from pipeline verification reports to facilitate vulnerability remediation

Troubleshoot developer issues with running security scans in the pipeline

Application Security Testing

Assist with application penetration testing

Assist with retesting vulnerabilities to verify the development teams have remediated

Review reports of the testing and conduct security risk assessment of the vulnerabilities

Conduct code scans using automated tools and risk rate the vulnerabilities according to the organization risk profile and mitigating controls.

Conduct IT/Security code review meetings to eliminate false positives and encourage collaboration between Security and IT development teams

Assist with application security vulnerability management including implementation of new vulnerability management tools

Documentation and Process Improvement

Assist in the development of metrics documentation to track the burndown rate of vulnerability remediation

Assist in the development of security engineering documentation:

o Explore opportunities for updates to Security Engineering policies and standards

o Assist with the development and periodic review of Security controls, policies, and procedures in close coordination with Security managers

Participate in the improvement of security engineering processes

Help gather evidence of security testing processes for audits

Work with development team and Q/A to create development life cycle documentation, provides integrated systems planning which will enhance current systems and support corporate, business and system goals.

Identify automation opportunities and help with department automation efforts

Qualifications:

Experience with CI/CD pipelines and software development/coding: Docker, Jenkins, GitHub, SVN, Terraform, and others.

Highly motivated individual that assumes ownership of their projects

Ability to act as a liaison between security and the development, IT, and QA teams.

Strong desire and capacity to learn and support new technical applications

Exceptional verbal communication skills that include the ability to articulate ideas clearly and concisely

Ability to write clear and concise documentation

Technical Skills:

Knowledge of Scripting languages including Java, C++, Python, JavaScript, Bash

Familiarity with application frameworks and their built-in security services and API's (ie, Sun J2EE, MS .NET, OMG CORBA, Spring, etc.)

Knowledge of security architecture design and principles including confidentiality, integrity and availability.

Knowledge of automated code scanning tools (ie,) and development pipeline tools (ie)

Understanding of security concepts and practices, including those for authentication, authorization, access control and auditing as well as best practices (eg OWASP).

Familiarity with application authentication and authorization systems (ie, CA SiteMinder, RSA SecurID/ACE, Active Directory, and LDAP)

General knowledge of cryptography (symmetric and asymmetric encryption, digital signatures, message digests, certificates, PKI, SSL/TLS, etc.)

Fundamental understanding of network and data communications technologies

Knowledge of (AWS, Azure, GCP) Cloud security concepts, best practices, and environments

Knowledge of Secure DevOps concepts

Bachelors degree

Experience writing scripts and working with containers in a CI/CD pipeline

At least 3+ year experience in Security-related roles or equivalent training/knowledge of security best practices and OWASP and NVD

Experience with SDLC and working with business users, database analysts, system architects, etc., to identify and prioritize requirements

Exposure to security architecture design through application development or knowledge of security concepts/best practices

Reference: 1662543951

Set up alerts to get notified of new vacancies.

Similar Jobs

Senior Solution Architect (m/f/d)

Cortland, IN

Annual Salary

Senior Solution Architect (m/f/d)

Cortland, IN

Annual Salary

Senior Solution Architect (m/f/d)

Cortland, IN

Annual Salary

Senior Solution Architect (m/f/d)

Cortland, IN

Annual Salary

Senior Systems Analyst

Valhalla, NY

Annual Salary

Systems Vulnerability Analyst

Rockville, MD

Annual Salary

REMOTE Software Engineer-Full Stack

Bloomington, IL

Annual Salary

Sr Developer - Glennis Solutions LLC

Louisville, KY

Annual Salary

.NET Software Engineer

Phoenix, AZ

Annual Salary