*Reply @ [email protected] <[email protected]>*
*Job Title: Sr. Application Security Engineer* *Location: Wallingford, CT* *Duration: 12 Months Contract* *Job Summary:* We are looking for a skilled Application Security Engineer to analyze software designs and implementations from a security perspective, and identify and resolve security issues. In addition to development, you will include the appropriate security analysis, defenses and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software. The Senior Security Engineer works under minimal supervision and will perform information security tasks commensurate with their experience that ensure applications and projects meet defined quality standards. *Required skills:* •Bachelor’s degree in Computer Science, Information Systems or related discipline with at least five (5) years of related experience, or equivalent training and/or work experience; Master’s degree and past Financial Services industry experience preferred. •Experience must include direct experience in leading key areas such as: securing networks and systems architecture, design and implementation, secure software assurance, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development. •In-depth knowledge of more than one communications protocol. •Experience managing several Cyber Security tools, including: Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control System, Network Intrusion prevention systems, and Endpoint Security Solutions. •Strong written and verbal technical communication skills. •Demonstrated ability to develop effective working relationships that improved the quality of work products. •Should be well organized, thorough, and able to handle competing priorities. •Ability to maintain focus and develop proficiency in new skills rapidly. •Ability to work in a fast paced environment. •Willingness to accept new challenges and grasp new or changing concepts, technologies and procedures. •In-depth knowledge across all areas of Information Security. *Responsibilities:* •Participate in Agile software development projects and tasks include coding, testing, debugging and documentation. •Participate in red teaming exercises and other internal security awareness activities •Create and maintain technical documentation using defined templates. •Deliver complex enterprise applications with high code standards. •Provide expert technical guidance and hands on validation of secure solutions during the design, development, and testing of systems •Perform technical security assessments, tests, code audits and design reviews •Develop solutions to scale security testing and enable engineering teams to identify security flaws pre-production •Act as advisor in the area of secure development and threat mitigation •Demonstrate leadership through evangelizing security, identification of issues and driving resolution across corporate functions •Work with other teams to ensure that they make safe architectural and implementation choices •Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the SDLC. •Perform validation of security controls to insure adherence with compliance and industry best practices. •Understand, balance and communicate business risk with security risk. •High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security. •Ability to understand business requirements and apply security without adversely affecting the desired functionality. •Develop a familiarity with new tools and best practices *Essential Job Functions:* •Implement, test and operate advanced software security techniques in compliance with technical reference architecture •Perform on-going security testing and code review to improve software security •Troubleshoot and debug issues that arise •Provide engineering designs for new software solutions to help mitigate security vulnerabilities •Contribute to all levels of the architecture •Maintain technical documentation •Consult team members on secure coding practices •Develop a familiarity with new tools and best practices •Engage business and technology personnel to elicit security requirements. •Ensure all work products meets /exceed HIPAA and HITRUST standards. •The Application Security Engineer participates in all stages of development of several applications within the enterprise. •Previous experiences with Enterprise Application development is a plus. Skill sets desired include: •Web application development •Cloud technologies (AWS/Azure) •Use of NoSQL technologies such as Mongo DB, Cassandra •Multiple RDBMS – SQL – Oracle, MySQL, MS SQL Server •Client-side application development using Javascript technologies including Angular 2 •Server-side application development using J2EE and Spring •Deployment and CI/CD technologies •Automated testing •APIs •Knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols •Strong emphasis on secure best practices and industry-leading processes •Strong commitment to Agile, Scrum, Test-Driven Development Unfeigned for your time and Consideration..!!!! *Ethan Hunt (Sr. Technical Recruiter)* Agile Enterprise Solutions Inc. Phone: 972-427-1834 E: [email protected] || *Gtalk*: [email protected] -- -- To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/CBE-Software-Engineer?hl=en --- You received this message because you are subscribed to the Google Groups "CBE Software Engineer" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
