Greetings..! Hope you are doing well. Please email me your suitable consultant resume to vi...@intellisofttech.com or call me at 972-756-1212 Ext: 132
QA Security Engineer 6+ Months Dallas TX *Candidates need to have PCI knowledge and must have experience with OWASP Top 10* *Job Description: QA Security Specialist* *The Quality Assurance Security Specialist will work under general supervision to coordinate and execute application security testing tasks and activities across the software development lifecycle:* *Overall Responsibilities: * - Coordinate with agile delivery teams on new and/or modified web applications, then schedule and/or execute automated vulnerability scans during testing cycles to identify and mitigate application security risk. - Validate and confirm potential application security issues and identify remediation steps. - Enter and track application security tasks and issues in systems of record. - Work with developers, testers, and other delivery partners to understand and remediate security issues. - Preform external system/network tests to internal, wireless as well as application-focused testing - Preform web application security testing which include: discovery, vulnerability testing and exploitation of web applications. - Network vulnerability assessments, penetration testing, analyzing results and writing assessment and test reports - Perform security test execution - Responsible for planning security testing of web applications during delivery across a variety of delivery models - Maintain schedules and coordinate activities for application security testing while maintaining high quality execution by identifying task dependencies, test schedules, and utilization of test environments - Design tests and/or procedures to assess application security posture - Ensure test deliverables are prepared per enterprise guidelines, monitors the completion of tasks within time and cost constraints, and ensures that technical and functional objectives are met - Adhere to defect tracking/management processes - Creation of clear and concise reports for technical and business audiences that include your recommendations for threat mitigation - Document relevant processes and procedures in adherence to team requirements to ensure repeatability and compliance with standards - Responsible for security research to keeping up with the latest threats and trends in security, you will be tasked with understanding and testing for a variety of potential security issues across multiple infrastructures *Required Skills & Experience:* - Must have experience in identifying, validating, and remediating application security issues such as those defined in the OWASP Top 10 - Experience assessing application security risk based on threat modeling and impact and likelihood scenarios - Ability to perform manual testing, SQL injection, and parameter manipulation - Must have 5+ years with the following Testing Tools: IBM AppScan, BurpSuite, Kismet, Nipper, Wireshark and BackTrack - A solid understanding of web servers, middleware, database server components - Experience working within Agile or related delivery methodologies *Regards*, *Vijay* 972-756-1212 * 132 *|| GTalk*: vijay.smist* ||** YIM*: vijayinventit || -- You received this message because you are subscribed to the Google Groups "American Vendor--IT Consulting" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-vendor+unsubscr...@googlegroups.com. To post to this group, send email to sap-vendor@googlegroups.com. Visit this group at http://groups.google.com/group/sap-vendor. For more options, visit https://groups.google.com/d/optout.