CISSP Jobs - Java Application Security Engineer, 13863

at NTT DATA
Location Dallas, TX
Date Posted June 15, 2019
Category Default
Job Type Contractor

Description

1) Application Vulnerability Assessments
2) Source code review preferably in Java and .NET languages using tools such as AppScan, HP Fortify or Checkmarx
3) Application architecture reviews or threat modeling and knowledge of common attack patterns or exploitation techniques
Articulating security issues to technical and non-technical audience is also required. In addition, knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures is expected. Excellent communication skills (written and verbal) and the ability to communicate with all levels of staff and management are also essential.
- Pre-requisites for this position are a Bachelor's Degree with 3 - 7 years' experience in security testing with good understanding of enterprise web development using programming languages such as Java or .NET.
- A good understanding of security vulnerabilities of web-based, mobile and desktop applications is required.
- Experience in applications security, cryptography, network security, systems security or reverse engineering.
- Experience conducting vulnerability assessments and articulating security issues to technical and non-technical audience is a plus.
- Industry-accredited security certifications will be required. The candidate must have or be willing to obtain all of the following certifications: CISSP, CEH and GIAC.
- In addition, knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures is expected.
- Good understanding of CI/CD pipeline and API /micro services development is preferable.
- Excellent communication skills (written and verbal) and the ability to communicate with all levels of staff and management are also essential.

Experience conducting one or more of the following functions:
1) Application vulnerability assessments
2) Source code review
3) Application architecture reviews or threat modeling
Pre-requisites for this position are a Bachelor's Degree with 3 - 7 years' experience in web development and programming languages i.e. Java, XML, Perl and HTML. A basic understanding of security, web-based and infrastructure vulnerabilities is required. Experience conducting vulnerability assessments and articulating security issues to technical and non-technical audience is a plus. Industry-accredited security certifications will be required. The candidate must have or be willing to obtain all of the following certifications - CISSP, CEH and GIAC.