Hello, Please share your consultant resume to tah...@usmsystems.com Security Analyst - Web & Mobile Plano, Texas Long term contract
Responsibilities: • Secure web application and environment design • Secure coding standards and practices • Web application security assessments & web exploit methodologies • Web vulnerability scans & penetration testing • Identification of misconfigured software • Analysis of potential threats • Data encryption and PKI implementation • Mobile device and user security (authentication, authorization, etc.) Requirements (Education, Skills & Abilities) • BS degree in computer science, related discipline or equivalent experience • Minimum of 5+ years of relevant experience • Extensive knowledge of secure web application architecture, design, and coding techniques • Hands-on experience using enterprise web scanning tools (Nexpose experience preferred) • Familiar with vulnerability assessment, confirmation, and validation tools, processes, methodologies, and strategies, including static and dynamic analysis tools/techniques • Familiar with the Open Web Application Security Project (OWASP) and CEW/SANS web security • Familiar with vulnerability reporting, tracking, management, and remediation processes, methodologies, and strategies • Familiar with host and vulnerability discovery strategies, processes, and best practices • Windows, Linux, OSX, and mobile platforms • Familiar with common network topologies and implementations (e.g., Infrastructure, DMZs, Zones, Wireless, etc.) • Extensive, hands-on experience with securing mobile applications and devices required. • Familiar with common security implementations and their associated gaps (e.g., Active Directory, centralized DNS, etc.) • Excellent verbal and written communication skills • Experience with project management standards and Agile development methodologies Desired Skills Experience with Code reviews of Perl, Python, Ruby, Java, Java Swing, HTML, XML, CSS, ASP, ASP.NET, Cold Fusion, Oracle, T-SQL, SQL and other languages Knowledge of threat modeling or other risk identification techniques Familiar with network penetration testing tools, processes, methodologies, and strategies Familiar with security exercise tools, processes, methodologies, and strategies Certified Ethical Hacker (CEH), Licensed Penetration Tester (LPT), CISSP, or related certifications a plus Best Regards, Mohammed Taher US IT Recruiter Direct: 703 349 4237 USM Business Systems Chantilly, VA 20151, USA. -- You received this message because you are subscribed to the Google Groups "SAP or Oracle Financials" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-or-oracle-financials+unsubscr...@googlegroups.com. To post to this group, send email to sap-or-oracle-financials@googlegroups.com. Visit this group at https://groups.google.com/group/sap-or-oracle-financials. For more options, visit https://groups.google.com/d/optout.
