Application Security Tester
Company: Iris Software Inc.
Location: Irving
Posted on: January 9, 2021
|
|
Job Description:
Iris''s client, one of the world''s largest financial
institutions, would like to hire a strong Application Security
Tester for 18 Months contractor opportunity based in Irving, TX OR
Tampa, FLJob title: Application Security TesterLocation: Irving, TX
OR Tampa, FLDuration: 18 Months+Only w2, No C2CMust Have: - Dynamic
Application Security Testing (DAST) & Static Application Security
Testing (SAST)Good to Have: - Java Development language, Security
Certifications, Threat Modelling, Cloud SecurityExperience: 7+Job
DescriptionThe DevSecOps Vulnerability Assessments Analyst provides
application security services to Citi businesses early in the
Software Development Life Cycle (SDLC). Candidate needs to work
closely with development teams on latest DevSecOps tools and
processes to integrate security testing.Responsibilities:Manage and
execute security assessments for multiple agile projects
simultaneously and ensure project timelines are met.Perform
application security testing on various types of applications such
as web, APIs (REST/SOAP/Micro services), thick clients, mobile,
etc., inclusive of the supporting infrastructure components.Utilize
Static Application Security Testing (SAST), Interactive Application
Security Testing (IAST), and Component Vulnerability Management
(CVM) tools such as Checkmarx, Contrast, and Black Duck to uncover
additional vulnerabilities during Dynamic Application Security
Testing (DAST).Analyze SAST, IAST, CVM, and DAST tool results to
eliminate false positives.Leverage application artifacts such as
business requirements, user stories, design documents, architecture
documents, and others to understand the scope of the agile review.
Create targeted security user stories and misuse cases to execute
during the agile review by performing threat modeling.Collaborate
with application teams to ensure that any identified security
vulnerabilities are remediated in a timely manner.Have the ability
to read and understand application source code in order to provide
specific recommendations for the identified vulnerabilities to
application teams.Have strong technical writing and presentation
skills to report and articulate security vulnerabilities to
technical and non-technical audiences.Qualifications:At least 5
years of experience in security testing performing:Application
penetration testing including Web, Desktop, API, MobileSource code
review preferably in Java or .NET programming languagesThreat
modelingA good understanding of enterprise application development
using programming languages such as Java or .NET.Working experience
in agile environments as part of the DevOps team with a very good
understanding of the CI/CD pipeline.Good understanding of the
following: BitBucket/Git, JIRA, TeamCity, Jenkins, SonarQube,
Artifactory, Checkmarx, BlackDuck, Contrast, Twistlock, AWS, GCP,
Azure, Docker, Kubernetes, OpenShift, PCF.Excellent communication
skills (written and verbal) and the ability to communicate with all
levels of staff and management are also essential.Must have a
strong understanding of ethical hacking methodologies, frameworks,
and industry resources, e.g. OWASP, OSSTMM, NIST publications,
SANS/CWE, among others.by Jobble
Keywords: Iris Software Inc., Irving , Application Security Tester, IT / Software / Systems , Irving, Texas
Click
here to apply!
|
Didn't find what you're looking for? Search again!
Other IT / Software / Systems JobsSAP Analyst Description: Planet121's direct, end client in Dallas, TX is looking for an SAP FI-PRA Production Revenue Accounting Analyst for a contract-to-hire basis. This person will provide support of their S/4 HANA system.This (more...) Company: Planet121 Location: Dallas Posted on: 01/18/2021 Senior Embedded Software Engineer Description: About the Team:We are looking for a Senior Embedded Software Engineer to deliver Inscape---s ACR and DAI client on multiple television platforms. The Senior Embedded Software Engineer will work with product (more...) Company: VIZIO Location: Dallas Posted on: 01/18/2021 System Programmer Description: I also have 3 openings available for an MVS System Programmer The role of the z/OS Systems Programmer is to be part of a team of technicians providing ---on-site--- and ---out of hours--- support of the (more...) Company: Princeton Information Location: Coppell Posted on: 01/18/2021 Salesforce Developer Description: Cincinnati Bell Technology Solutions is currently seeking a Salesforce Developer for a position located in Frisco, TX.-- br Responsibilities:-- ul li Designing and developing Lightning Company: CBTS Location: Frisco Posted on: 01/18/2021 Web Developer Description: Title: Web Developer E-Commerce /Shopify API Direct Hire Sorry, no sponsorship Our client is seeking a very experienced Web developer to support omni-channel growth for B2C and B2B e-commerce, as well (more...) Company: Elan Partners Location: Coppell Posted on: 01/18/2021 ETL Developer Description: A little about us L T Infotech is one of the largest global technology consulting and digital solutions company - holding an annual revenue of 1.4 bn. We were founded 20 years ago as the information (more...) Company: LTI Larsen & Toubro Infotech Location: Coppell Posted on: 01/18/2021 Application Developer Description: Ideal candidates will have a background in application development with at least 3 years demonstrated work experience specifically focused in enterprise scale solutions, great analytical skills, strong (more...) Company: Norgate Technology Location: Coppell Posted on: 01/18/2021 Senior Java Software Engineer Description: Developer will be supporting high volume North America Digital Web and Mobile applications, mainly supporting as a JAVA developer with Microservice on PCF environment. Company: Norgate Technology Location: Coppell Posted on: 01/18/2021 Java Web Developer Description: Synechron Inc is seeking Java Developer to join our Addison, TX team.Required Skills: 3 years of hands-on experience with Angular, Bootstrap, with Excellent knowledge of Web Application Company: Synechron Location: Dallas Posted on: 01/18/2021 Software Engineer Description: Work Authorization: We cannot offer employer sponsorship at this time candidates must be eligible to work in the US full-time. You will be Company: Odyssey Information Services Location: Coppell Posted on: 01/18/2021 |