[android-developers] Application Security Engineer

[Abdul Raheem]

Hi

This is *Abdul Raheem* from *Exatech Inc*. I have an immediate position
mentioned below. Please review and let me know your interest.



*Role: Application Security Engineer*

Location: Mountain View, CA (Remote)

Duration: 12+ months

Interview: Video



*Job Description*

*- Hands-on with major operating systems, Linux, UNIX, and Windows.*

*- Hands-on experience with AWS and GCP; ability to implement server
patches, change configurations and pushing new AMIs*

*- Solid understanding of common attacks and threats, know how to manage
vulnerabilities*

*- Excellent problem solving and communication skills*

*- Ability to work across teams*

*- Experience in wiz.io  and panaseer is a plus*



*Brief on the work from the client to help you understand the role:*

Weekly we are provided multiple vulnerabilities on the servers we have in
EMS, these include on-prem, AWS and GCP servers.   Includes both windows
and linux servers.   I need a team to assist in remedying  the
vulnerabilities and at the same time determine if there are best practices
or processes we can put in place long term to help us.  We get the
vulnerabilities via wiz.io and panaseer.  It will require the ability to
login and implement patch, change configurations, pushing new AMIs and
possibly working with our EITS and EEC group



Thanks and Regards

*Abdul Raheem, Sr. Talent Acquisition Lead*

*Email: **rah...@exatechinc.com *

Skype & Hangout: mdabdulrahee...@gmail.com

*4555 Lake Forest Drive, Suite 650 **| **Cincinnati, OH  45242  *

An E-Verified Company

USA-Canada-INDIA

-- 
You received this message because you are subscribed to the Google Groups 
"Android Developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to android-developers+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/android-developers/CAJHuG4MXtDAPseyK8%3D_PhcisqqueHimGNRECDoG1ZqH-PQYgkQ%40mail.gmail.com.

[android-developers] Application Security Engineer - Wallingford, CT

[Sekhar Reddy]

Hi,

*Sekhar* here from *METASIS INFORMATION,* one of our client has an opening
for *Application Security Engineer.*

Below is the job description for your reference, please go through it and
let me know your interest.



*Role   : Application Security Engineer*

*Location   : Wallingford, CT*

*Start Date: ASAP*

*Duration  : 12 Months contract*

*Interview: Telephonic/ Skype*



*Application Security Engineer*

*Job Summary:*

We are looking for a skilled Application Security Engineer to analyze
software designs and implementations from a security perspective, and
identify and resolve security issues. In addition to development, you will
include the appropriate security analysis, defenses and countermeasures at
each phase of the software development lifecycle, to result in robust and
reliable software.

The Senior Security Engineer works under minimal supervision and will
perform information security tasks commensurate with their experience that
ensure applications and projects meet defined quality standards.



*Essential Job Functions:*

· Implement, test and operate advanced software security techniques
in compliance with technical reference architecture

· Perform on-going security testing and code review to improve
software security

· Troubleshoot and debug issues that arise

· Provide engineering designs for new software solutions to help
mitigate security vulnerabilities

· Contribute to all levels of the architecture

· Maintain technical documentation

· Consult team members on secure coding practices

· Develop a familiarity with new tools and best practices

· Engage business and technology personnel to elicit security
requirements.

· Ensure all work products meets /exceed HIPAA and HITRUST
standards.

· The Application Security Engineer participates in all stages of
development of several applications within the enterprise.

· Previous experiences with Enterprise Application development is a
plus.



*Skill sets desired include: *

· Web application development

· Cloud technologies (AWS/Azure)

· Use of NoSQL technologies such as Mongo DB, Cassandra

· Multiple RDBMS – SQL – Oracle, MySQL, MS SQL Server

· Client-side application development using Javascript technologies
including Angular 2

· Server-side application development using J2EE and Spring

· Deployment and CI/CD technologies

· Automated testing

· APIs

· Knowledge of web related technologies (Web applications, Web
Services and Service Oriented Architectures) and of network/web related
protocols

· Strong emphasis on secure best practices and industry-leading
processes

· Strong commitment to Agile, Scrum, Test-Driven Development



*Responsibilities:*

· Participate in Agile software development projects and tasks
include coding, testing, debugging and documentation.

· Participate in red teaming exercises and other internal security
awareness activities

· Create and maintain technical documentation using defined
templates.

· Deliver complex enterprise applications with high code standards.

· Provide expert technical guidance and hands on validation of
secure solutions during the design, development, and testing of systems

· Perform technical security assessments, tests, code audits and
design reviews

· Develop solutions to scale security testing and enable
engineering teams to identify security flaws pre-production

· Act as advisor in the area of secure development and threat
mitigation

· Demonstrate leadership through evangelizing security,
identification of issues and driving resolution across corporate functions

· Work with other teams to ensure that they make safe architectural
and implementation choices

· Collaborate with engineers, consultants and leadership to address
security risks and provide mitigation recommendations within the SDLC.

· Perform validation of security controls to insure adherence with
compliance and industry best practices.

· Understand, balance and communicate business risk with security
risk.

· High level of personal integrity, with the ability to
professionally handle confidential matters, and reflect appropriate level
of judgment as it pertains to security.

· Ability to understand business requirements and apply security
without adversely affecting the desired functionality.

· Develop a familiarity with new tools and best practices



*Qualifications*

*Education/Experience Requirements:*

· Bachelor’s degree in Computer Science, Information Systems or
related discipline with at least five (5) years of related experience, or
equivalent training and/or work experience; Master’s degree and past