Position:- DMV ISD Application Security Location:- Palo Alto, CA
Duration:- 6+ months · Perform a workload analysis and provide staffing projections for the implementation of Secure Coding practices within the ISD; · Provide an assessment of the DMV ISD Application Security and Secure Coding Standards and apply recommended improvements; · Perform a review and provide updates to the ISD SDLC documents to assure best practices and compatibility/*enforcement *of Secure Coding practices are followed; · Conduct a review of the ISD COBOL and Java environments and applications, as well as, coding analysis/testing tools currently utilized, then provide recommendations (and selection rational) for additional code analysis tools to support the implementation of secure coding; · Prepare and present to ISD staff (including management) a guideline document encompassing the ISD secure coding standards, SDLC, secure coding compliance/enforcement measures, and recommended code analysis tools; · Prepare materials for and conduct a set of training classes, for both COBOL and Java, that will address DMV security vulnerabilities and vulnerability findings captured from this assessment and define the associated mitigation (coding/design) strategies and techniques for vulnerability avoidance; and, · Provide time reporting categories to identify and track secure coding activities so that they can be applied to an Activity Based Costing (ABC) system. Required Qualifications 1. A Bachelor’s degree, with a technical major, such as Computer Science or Engineering. • A combination of education and experience can substitute for the degree. • *Must* have 8+ years of application programming and support experience. (Example: A person can have 3 years of college education plus 5 years of work experience. This must be listed on your resume.) 2. At least three (3) years of experience applying Secure Coding practices across a multi-platform environment utilizing multiple application languages. 3. At least three (3) years of work experience evaluating and utilizing code analysis tools specifically for the purpose of Secure Coding validation. 4. At least five (5) years previous work experience implementing and/or utilizing a formal SDLC is required. 5. At least three (3) years of experience in the policies, practices, and implementation of Secure Coding practices. 6. At least three (3) years of previous work experience in establishing a methodology (based on industry standards) which defines the policies, objectives, and principles necessary to produce secure coding is required. 7. At least three (3) years of previous work experience conducting workload and staffing assessments for the support of Secure Coding practices. Desirable Qualification 1. Previous work experience with California state government. -- *--Thanks & Regards,Vikas Kumar SinghPh: 408-722-9100 Ext: 112Email: [email protected] <[email protected]>* -- You received this message because you are subscribed to the Google Groups "US_IT.Groups" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/us_itgroups. For more options, visit https://groups.google.com/d/optout.
