Vacancy expired!
- Perform formal penetration testing of products and solutions including remediation planning and solution identification
- Perform Threat Modeling Vulnerability Management process and tools for all developed products/services/solutions
- Research document and discuss security findings with management and product management teams
- Perform design and implementation security reviews for all products and ensure adoption of product security framework and policies
- Provide feedback and verification of remediation for the identified vulnerabilities
- Provide clear and concise reporting of vulnerabilities and defects with potential resolutions and recommendations.
- Track and report adherence to product security requirements throughout software development lifecycle pre- and post-commercialization
- Propose and evaluate innovative new security features that could benefit our products
- Develop technical solutions to address security weaknesses and collaborate with relevant stakeholders to effectively implement them in our products
- Assist with security incident response as needed
- May perform other duties as identified
- Expertise in conducting application security assessments covering threat modeling design reviews project management and in-depth implementation audits.
- A minimum of 2 to 5 years of industry experience in security and development
- Solid foundation in formal penetration testing ethical hacking of embedded systems web applications and complex networked system
- Demonstrate knowledge of product security requirements and secure coding standards e.g. NIST SP 800-53 ISO/IEC 27001 OWASP SEI CERT and MS Secure Coding Standards
- Demonstrates thorough abilities and/or a proven record of success in the following areas:
- Engaging business and technology stakeholders at all levels to gather long term goals and requirements
- Demonstrating hands-on engineering experience with enterprise security technology
- Contributing to a central technology service organization
- Navigating a matrix organization
- Collaborating with multiple stakeholders across functional and technical skill sets.
- Ideal candidate will have BS or MS in Computer Science Information Security or equivalent experience
- Offensive Security Certified Expert OSCE or an Offensive Security Certified Professional OSCP
- ID: #49551338
- State: New Jersey Bernards 00000 Bernards USA
- City: Bernards
- Salary: USD TBD TBD
- Job type: Permanent
- Showed: 2023-03-26
- Deadline: 2023-05-24
- Category: Et cetera