*Please send resumes to *[email protected];
*Information Security Analyst * *Frankfort, KY* *1-year contract * *Job Description* Client is seeking a Security Analyst to assist in creating and supporting the new integrated tax system the Department will be implementing with a vendor. The position requires a hands-on Security Architect who has experience with application security. We would like to fill this position as soon as possible with the intent of keeping this resource long term. Please include the requested rate when submitting the resumes of potential candidates *Roles & Responsibilities:* - Development and implementation of agency’s application security tools - Establishing capabilities for defining application security controls - Static and dynamic code analysis - Identification and remediation of vulnerabilities in applications - Performing security reviews of application designs, deployment architectures, source code, stored procedures and server/service configurations - Developing and documenting application security standards - Create and maintain role-based security *Skills Required:* - *Must have a depth of understanding of NIST, IRS and OWASP standards for application and network assessments. * - Expertise in securing enterprise web applications - *Experience with Windows enterprise environments including Active Directory, Windows Server 2008-2016, MSSQL Server* - Experience in the areas of User Access Management, Identity Management or a related field - Experience with role-based security management - Understanding of managing application user accounts in an enterprise environment - Strong analytical and planning/organization skills - Ability to identify issues and risks, assess impact and execute mitigation plans - Firm understanding of common web based protocols including HTTP, SQL, SOAP, and REST API - *Strong familiarity with web technologies including IIS, ASP.NET <http://ASP.NET>, MVC web applications, and WCF web services* - Strong familiarity with OWASP top 10 concepts and common web application vulnerabilities - Strong verbal and written communication skills; with the ability to verbally communicate technical issues to non- technical and executive staff members - Demonstrated understanding of software development life-cycle and secure coding techniques - Ability to research platform-specific disclosed vulnerabilities and analyze the impact to the enterprise - Demonstrated ability to learn quickly and understand business and technical subjects and issues - Ability to work independently and as part of a team - Ability to effectively prioritize competing projects simultaneously - Ability to interface with various levels of management, business partners, vendors and Technical Teams *Experience Preferred:* - *3 to 5 years’ IT security experience* - Experience in interfacing with various levels of management, business partners, vendors and other IT groups - Experience with mid to large sized projects involving multiple source systems - Experience with Integrated Tax System projects OR large scale IT integration projects *Desired Certifications:* - Security+ - CISSP: Certified Information Systems Security Professional - Other application security level certification *Education Required:* - Bachelor or Master of Computer Science / Management Information Systems, Computer Engineering, Business Administration or related field. Thanks & Regards, *Naresh Soma | Latitude36 Inc | Technical Recruiter* *Desk: 615.288.0986| Email: [email protected] <[email protected]>* -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/android-developers/CAHKwTS%2BFj88EqbVOGzZDkbyCpqorqCU%3DcBU%3Duege8CzCh_rxcg%40mail.gmail.com.
