Wednesday, July 25, 2018

Application Security Engineer

6+ month contract opportunity for an Application Security Engineer with a Global Financial Firm in Westlake, TX
 
**NO THIRD PARTIES OR C2C - W2 ONLY**
**MUST BE ABLE TO INTERVIEW IN PERSON**


RESPONSIBILITIES
• Web Application Security – OWASP Top 10 for example
• Be prepared to meet with and work with the business
• Responsible for running applications through Veracode software while in the software development lifecycle to prevent any security defects previous to production.
• Maintain and create secure development practices and programs for Client's application development teams
• Find defects to improve quality by mitigating flaws and positive / negative testing
• Work closely with Secure Software Development Lifecycle team
• Act as an ambassador for the secure development lifecycle within Client
• SAST tool experience
• Web development and web technologies like HTTP, HTML, CSS, and JSPs.
• Web Application Architecture (Client/Server model and Model View Controller design pattern, familiar with Tomcat etc.)

REQUIRED QUALIFICATIONS
• Bachelor's degree in Computer Science, related discipline, or equivalent experience
• 4-7+ years of Information Security experience
• 2+ years of Application Security experience required
• Experience with Veracode or other relevant technologies (Client Fortify or Checkmarx) is required
• Security Certifications highly preferred (Tia Security+, CISM, CEH)

DESIRED QUALIFICATIONS
• CISSP, CSSLP
• Understanding of the basic concepts of programming (object-oriented, functional patterns, etc.)
• Familiarity with the OWASP Top 10
• Proficient at the secure software development lifecycle and DevSecOps
• Intermediate to expert knowledge of HTML and JavaScript
• Understanding of SAST concepts
• Development experience is only a plus (mostly Java, C#.NET, PHP, .Net, C/C++, Python, Ruby, SQL, etc.)

SOFT SKILLS
• Effective communication with team members and customers
• Detail oriented problem solving
• Passion for the advancement of web security
• Demonstrate good customer service, written and oral communication
• Quickly learn new languages, frameworks, and security controls through self-study
• Intermediate to expert knowledge of one or more of the following languages: Java, C#.NET, PHP, .Net, C/C++, Python, Ruby, SQL, etc.


Chris Liendo
Axelon Services Corporation
44 Wall Street 18th Floor
New York, NY 10005
(212) 488-5344
chris.liendo@axelon.com