Hi ,
Greetings !!!!
Please go through the below job description and let me know your interest.
Role: Application Security Engineer / Architect
Location: NYC, NY(Hybrid)
Only : GC / USC*
Responsibilities:
● Work independently with developers, system/network administrators, product owners, design teams and other colleagues to ensure secure design, development, and implementation of applications and networks - defining and promoting a full SDLC program.
● Perform security architecture design reviews of our applications (primarily cloud.)
● Perform code analysis of large applications manually and conduct manual vulnerability analysis.
● Provide remediation guidance and recommendations to developers and administrators.
● Work with development teams to help prioritize and validate urgency of mitigation of identified product vulnerabilities and security feature enhancement requests.
● Define security best practices and standards and ensure development teams understand them and receive pertinent annual secure coding training.
● Researches, evaluates, tests and assists on implementation of new security solutions around devsecops and the application pipeline.
● Works closely with Jr. Security Analysts and security platform engineers to investigate and resolve security related events.
● Works alongside project management in a SCRUM environment to successfully monitor progress and implementat security initiatives.
Qualifications :
● Minimum 5 years of experience at the senior level working in depth with various versions of Mac/MS/Unix/Linux operating system, networking, security devices and securing web based and back office applications.
● Experience working with development teams to build secure solutions.
● Experience breaking down complex systems and applications to find flaws.
● Proficiency in reading, writing, and auditing Java and the ability to pick up new languages/technologies.
● Experience with secure coding practices and architecting secure applications written in Java.
● The ability to communicate complicated technical issues and the risks they pose to developers, network engineers, system administrators, and management.
● Security certification such as CISSP is preferred.
● Cloud security experience with AWS and Salesforce is a plus.
● Bachelor's degree in Computer Science or Information Security.
● A keen eye for detail, an analytical thinker and the ability to multitask.
● The ability to thrive in fast-paced, high stress situations.
● A problem solver with the ability to communicate effectively with peers, business partners and management.
● Self-starter, positive attitude, ability to work independently, enjoys learning and staying current with industry developments, regulations and best practices.● Experience providing security training to developers.