Vacancy expired!
Job Role: Application Security AnalystLocation: McLean, VA OR Dallas, TX/HybridDuration: 6 months with possible contract to hire Description: Required Skills:Full stack developer with 3 to 5 years of Java development experience using Java technologies, Spring MVC/Spring Boot as well as Javascript and python.Well versed in understanding of OWASP top 10 vulnerabilities.Must be able to analyze source code for security vulnerabilities in Java, JavaScript, Python, Angular, Node, regexFamiliarity with SAST tools such as Checkmarks or Fortify as well as SCA tools such as BlackduckAbility to communicate with developers and explain security issues in source codeBe a self-motivated individual who can manage time effectively and deliver reports in a tight timeline to the business.Good to have - Familiarity with DAST tools such as Burpsuite Pro Years of Experience:2+ Must skills:Some programming Java/C/C 0-3 years.Checkmarks and Fortify experience.Application security background experience. Position Overview:Our Application Security team plays a critical role in identifying security vulnerabilities impacting the confidentiality, integrity and availability of Client information systems and data.We are looking for a technical Application Security Analyst to join our team, who can add value quickly and has hands-on experience with a variety of Applications Security tools, with particular subject matter expertise in Static Application Security Testing (SAST), and Software Composition Analysis (SCA).Familiarity and experience with working on critical Application Security initiatives and solutions in conjunction with DevOps teams, to help build security into modern development lifecycles in an effort to Shift-Security-Left, is also desirable.Our team has a strong focus on our customers, the development teams who we interact with on a daily basis, and therefore, we require analysts with strong technical skills in a variety of programming languages, such as Java, C/C, C#, Node, and Python, as well as expertise in modern development frameworks such as Java Spring, and ASP .NET, who can work with our customers to not only identify risk, but also provide valuable remediation guidance to enable overall product improvement and security posture. Qualifications:3+ years in the field of Application Security, with technical experience in performing both Static Application Security Testing (SAST) and Software Composition Analysis (SCA).Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field or equivalent work experience.Technical experience in using SAST tools such as Checkmarx CxSAST, Fortify SCA, etc.Technical experience in using SCA tools such as Checkmarx CxSCA, Black Duck, etc.Hands on Development Experience with programming languages such as Java, C/C, C#, ASP .NET, and Python.Familiarity with software and programming fundamentalsExperience with understanding and identifying Application Security vulnerability risks and assigning risk ratings.Understanding of UNIX and LINUXUnderstanding of OWASP top 10 vulnerabilitiesExcellent analytical skills and detail-oriented.Experience in working with Vendor hosted SaaS solutions for various security products, such as SAST and SCA tools.Experience with CI/CD pipelinesExperience with Cloud products / Cloud security products
- ID: #49385284
-
State: Virginia
Mclean
20598
Mclean
USA
- City: Mclean
- Salary: $60 - $70
- Job type: Contract
- Showed: 2023-03-01
- Deadline: 2023-04-28
- Category: Et cetera