Vacancy caducado!
Location: Carnot-Moon, PA Description: Our client is currently seeking a Application Security Engineer
- Infrastructure Security EngineerDuties:Assist in evaluating, planning, configuration, and implementation of new/existing security applications/toolsSystematically address application security issues and develop secure coding practices for multiple development teamsIntegration of application authentication, encryption, authorization, and access controlProvide mitigation strategies for applications from secure coding perspectiveUtilize application security scanning tools such as Burpsuite/Fortify to interpret reports and validate identified vulnerabilities and associated risksUtilize source code scan tools such as Fortify to assist application development teams to apply the best practice for application security and catch potential vulnerabilities at early stageRequirements:Extensive experience in addressing web application security issues, such as those outlined in OWASP Top 10Strong knowledge of application security throughout the software lifecycleExperience developing secure coding practices with C#, Asp.Net (MVC and WebForms), HTML/CSS, Sql ServerStrong knowledge and experience in securing an application's integration with relational database management systems such as MS SQLProven ability to ensure applications are secure throughout the software lifecycleAbility to perform manual and automated testing to identify vulnerabilities such (BurpSuite Pro, Fiddler, Netsparker, etc.)Knowledge of security in both Linux and Windows environments as it pertains to Web application hosting, middleware (IIS, Apache, Tomcat, PHP, ColdFusion, Ajax), and databases (Oracle, MySQL, MS SQL Servers)Software Security Certifications, such as Certified Secure Software Lifecycle Professional (CSSLP) is a big plusExcellent communication skills including presentation and documentation.Strong capability in evaluating application security related productsEducation:A Bachelor's degree in Computer Science or related engineering field with training in software security.Experience:Strong software engineering background with extensive experience working in complex enterprise environments Kubernetes and containerization. Our code base is all .NET Core.implementing software development lifecyclesExperience in HTML, CSS, and JavaScript]
Vacancy caducado!