Application Security Engineer in Hollywood, FL at Consultis

Date Posted: 7/6/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Hollywood, FL
  • Job Type:
    Security
  • Experience:
    Not Specified
  • Date Posted:
    7/6/2018
  • Job ID:
    76633

Job Description

WE ARE UNABLE TO OFFER SPONSORSHIP OR THIRD PARTY REPRESENTATION FOR THIS POSITION

Consultis, a premier Technical Solutions Provider and IT Staffing Firm with the single focus of pairing the right candidate with the right employment opportunity is currently searching for an Application Security Engineer for a Direct Hire opportunity (FTE) with our South Florida based client.

Position Overview:

This person will assist the development and security operations team with application-level security assessments and threat mitigation, perform penetration testing and security code reviews and review application security architecture.

Requirements/Responsibilities:

  • Develop and evangelize secure programming standards
  • Provide guidance to the development and applications teams to proactively address security concerns and ensure that application security architecture, designs, and plans are aligned with information security standards and controls
  • Define and coordinate security requirements within various stages of the system development lifecycle process
  • Validate and address vulnerability / threat findings from static analysis tools
  • Coordinate, schedule and perform routine internal application, network, system and infrastructure penetration testing
  • Perform security reviews of software designs and assist developers to ensure quality and robustness of our internal products
  • Perform overall design review, including protocol checks for security issues
  • Examine communications protocols and data storage mechanisms for security risks
  • Validate, address and document responses to security findings from third-party penetration testing engagements
  • Perform code reviews, application vulnerability testing and penetration testing
  • Conduct security assessments against web applications and APIs across a variety of technology stacks
  • Ensure adequate security requirements and privacy by design are built in to all architecture/infrastructure/projects

Required Qualification or Skills:

  • Bachelor’s degree preferred in Computer Sciences, Information Technology, Information Security or other related field
  • Five (5) years of related work experience, which includes two (2) years of practical experience in security incident management and response and two (2) years of practical experience in threat modeling, penetration testing and/or secure application development
  • Direct experience with secure application development and application security risk mitigation techniques
  • Knowledge of OAuth/OpenID Connect and JSON Web Token (JWT) highly desired
  • Knowledge of web application attacks and defense strategies including those found in the OWASP Top 10 and mobile Top 10
  • Passionate about Application Security with any combination of the following: secure coding, experience securing platform web APIs, code debugging, software development, system administration and network security, penetration testing (app and network), implementation of secure application architectures, cryptography and key management, authentication and control of application permissions
  • At least one industry standard certification such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Fraud Examiner (CFE), or SANS GIAC Certifications such as GWAPT, GPEN, GCIA, GWEB, GSSP
  • Have an understanding of OS concepts such as scheduling, interrupt handling, virtualization of computing resources
  • Demonstrate an understanding of programming and scripting skills
  • Familiar with application security tools such as Rapid7, Core Impact, BurpSuite Pro, OWASP ZAP, Nmap, Nessus, Metasploit, Kali Linux
  • Experience with an interpreted programming language (PHP, Python, Perl, Ruby, Java, Node.js, JavaScript, etc)
  • Comfortable working independently but able to escalate problems as necessary
  • Willing to guide and mentor fellow team members
  • Can write code and documentation
  • Can effectively use git and understand common SCM workflows

TO APPLY FOR THIS POSITION:

Please apply online through Consultis' application process. This will register you into our database allowing us to better qualify and present you with opportunities. Provide as much information as possible including telephone #s, email, local address, resume, skills, availability, relocation preferences, acceptable travel percentage, salary history, work history, references and job type categories.  Should you experience trouble please feel free to contact us directly at 561-750-8745

You may also email your resume to: KyleR@consultis.com

WE ARE UNABLE TO OFFER SPONSORSHIP OR THIRD PARTY REPRESENTATION FOR THIS POSITION