Application Security Consultant

This job is no longer active!

View all jobs Secureworks active


View all jobs Application Security Consultant active on Hipo.ro

View all jobs IT Hardware active on Hipo.ro

View all jobs IT Software active on Hipo.ro

View all jobs Telecommunication active on Hipo.ro


Employer: Secureworks
Domain:
  • IT Hardware
  • IT Software
  • Telecommunication
  • Job type: full-time
    Job level: peste 5 years of experience
    Location:
  • BUCHAREST
  • nationwide
    Updated at: 04.12.2018
    Remote work: On-site
    Short company description

    Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

    We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

    Requirements

    Knowledge requirements

    • 4+ years experience in administering software-centric security controls in an organization

    • Advanced spoken /written English communications skills

    • Languages: C#.Net, ASP.Net, Java, Objective-C, Javascript, Python, Curl, Perl and

    Windows PowerShell

    • Excellent working knowledge of software security industry standards and development

    lifecycle methods – SEI/CMU, SAFECODE, MITRE - Common Weakness Enumeration –

    Vulnerability Trends, ISO/IEC 27034, CERT - Secure Coding Standards, OWASP Secure

    Coding Practices

    • Software development and quality assurance testing experience

    • IT Systems: SharePoint Administration; MS SQL & IIS Administration, and MySQL

    • High proficiency with MS Office productivity applications and Visio

    Preferences
    • Experience with: Veracode, Coverity, HP Fortify, Checkmarx, AppScan, WebInspect Analysis solution

    • HP Quality Center, Jira, Team Foundation Services software development lifecycle tools

    • Application lifecycle management capabilities

    • Threat Modeling tools (e.g. Microsoft SDL, STRIDE, PASTA, etc)

    Responsibilities

    Main responsibilities

    • Provide prescriptive guidance and/or root cause analysis of code-level security vulnerabilities in software, to include 3rd-party components.

    • Help guide security quality and risk remediation priorities for code-level software reviews.

    • Maintain and help implement source code analysis workflow automation improvements

    • Help inspect security vulnerabilities associated with open-source and 3rd-party functional libraries

    • Assist with security review or creation of written technical guidance that prioritize and remediate software security defects.

    • Create, update and maintain appropriate documentation including on-boarding processes and procedures, operational issue tracking and resolution reporting, ticket management and validation analysis checklists

    • Work closely with your team members, development project managers, developers, and development operations, during software design through releases to insure a solid set of security requirements and analysis best practices.

    • Partner with technology leads and IT Risk leaders to work through product and/or application security issues, resolution and approved remediation plans.

    • Contribute to operational process improvements, aid adoption of secure development practices and capabilities designed to enable high quality software.

    • Monitor, research, and resolve issue tickets in the product and application security support queue.

    • Build and share knowledge in emerging software analysis technologies in the industry and it relates to the broader program focus.

    Job-uri similare care te-ar putea interesa:

    Aplica fara CV
    BUCURESTI, Job national

    Hybrid

    Hybrid

    Vezi job-uri similare (360)