Senior Application Security Engineer (Technical Specialist) - Contract to Hire

Experienced Recruiting Partners - Rensselaer, NY, United States

Contract to Hire

Location: Albany, NY area (Rensselaer)

Overview:

You’ll join the client's talented Development Team.

  • Their project is built on a multi-tier architecture including Service Oriented architecture, multi-tier web applications using Java and various other COTS products.
  • Work closely with development teams to diagnose, document, and remediate application security vulnerabilities and identify appropriate security checkpoints in SDLC.
  • Perform risk-based, technical assessments/penetration tests of applications, using dynamic and static scanning tools, and audits ensuring compliance with industry standards
  • Consult with Development leadership on application development training.
  • Research new attack vectors and stay current with cybersecurity news and trends.

Requirements:

  • 8+ years Information Technology.
  • 5+ years in software development role as a Developer, or Architect
  • Java/Web development with strong secure coding background in RHEL and JBoss.
  • Bachelor’s degree in Computer Science, or related technical field, OR equivalent combination of education and experience
  • 3+years with Application Security Engineering conducting assessments, penetration testing, implementing tools for dynamic /automated code review, dynamic and static application scanning (Fortify, SonarQube); consulting on security designs of applications, potential vulnerabilities, and remediation, and creating training materials on key security concepts.

Skills:

  • Strong oral and written communication skills, with a demonstrated ability to communicate complex topics to colleagues, and management.
  • Demonstrated collaboration and teaching abilities.
  • Strong analytical skills.
  • Identify and resolve problems in a timely manner; gather and analyze information skillfully; develop alternative solutions.
  • Critical thinking and creative problem solving

Plus: CISSP, CEH, CISA, OSCP, OSCE, or OSWE Certifications



Posted On: Monday, October 21, 2024



Apply to this job

or