Hi please share your profile at *[email protected] <[email protected]>*
*We have opening for **Security Analyst/ Penetration Tester** position at **Austin, TX* *—Longterm Contract* *Title: **Security Analyst/ Penetration Tester* *Locations: **Austin, TX* *Duration: Longterm Contract* *Rate: Open* *JD:* MUST: *Appscan/ related tool sets (min 4 years)* *Responsibilities (including but not limited to):* Accountability and ownership for web security scanning solutions, processes, services and operations. · Application security testing with Appscan/ similar tool. · Maintain an understanding of attacks, vectors and emergent threats (OWASP). · Develop and maintain secure web coding practices and enterprise wide standards. Educate and collaborate with customers on practices and standards. · Provides technical consultation and direction on web application design, architecture and system performance, and evolving technologies. · Conceiving & attending secure design reviews, code reviews. · Documenting, updating issues, and report creation from each control area related to application security activities. · New monitoring configuration and customization. · Work with network, platform, engineering and development teams in architecture design and review sessions. · Identify areas of risk on projects where security requirements cannot be fully addressed in the required time frame of the project. · Assist Team Lead in creating and reviewing design proposals and remediation strategies concerning application security issues and vulnerabilities. *Job Skills **–** Required* · Knowledge of the common application and infrastructure level vulnerabilities - ability to explain these risks to developers. · Ability to communicate security-related concepts to a broad range of technical and non-technical staff. · Ability to evaluate technical and functional specifications early within the software development process, identify possible threats or areas of weakness. · Experience in taking part and contributing to design sessions. · Platform: Deep knowledge of at least one primary operating system (Unix or Windows), the configuration and management of that platform at an enterprise scale, the security risks to that platform, and how to mitigate those risks. · Network security: The candidate will be expected to understand the standard network model and the risks present at each layer, the functions of network equipment such as switches, routers, firewalls, proxies, VPN, and load-balancers, and to understand network architecture. · Desirable: The candidate should have expertise with security-related topics such as authentication, entitlements, identity management, data protection, data leakage prevention, validation checking, encryption, hashing, principle of least privilege, software attack methodologies, secure data transfer, secure data storage etc. · In-depth knowledge of network technologies such as SFTP, firewall, DMZ design, IPSec, VPN, Wireless, network topologies and protocols. *Please fill the required Information:-* *Full Name* *Present Location* *Best Number To Reach* *Email Id* *Visa Status & Validity* *Rate/Salary* *Relocation(Yes/No)* *Availability* *US Experience* *Overall Experience* *Date Of Birth* *Regards,* *pradeep | Resource Specialist | IT Objects LLC* *459 Herndon Pkwy, Suite#20, Herndon, VA 20170* *Direct: 703-763-1530|**Fax:703-935-0075* *[email protected]* <[email protected]>* |**www.itobjects.com <http://www.itobjects.com>* -- You received this message because you are subscribed to the Google Groups "as400placements1" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send an email to [email protected]. Visit this group at http://groups.google.com/group/hrccpl. For more options, visit https://groups.google.com/d/optout.
