| Senior Product Security Engineer in Basking Ridge NJ Locals at Basking Ridge, New Jersey, USA |
| Email: [email protected] |
| From: Awkash Kumar, Largeton Inc [email protected] Reply to: [email protected] Job Description Title: Senior Product Security Engineer Location:: Basking Ridge, NJ - HYBRID -local only Duration:: 12+ month Visa:: GC, USC, GC- EAD Must have LinkedIn Description: Needed someone with Application Penetration testing, Mobile Security and Vulnerability, NIST You will also work in conjunction with security stakeholders in other areas of the business and make decisions and help lead initiatives to ensure timely delivery of security solutions that support business objectives. You will also manage work that involves coordination with multiple organizations and is the focal point within the group. -Help implement Secure Software Development Lifecycle (SSDLC) practices and use automation where possible -Work with the product teams to perform security design/code reviews and vulnerability assessment -Provide security guidance to Engineering and Product teams. -Build threat models and participate in risk assessments for new features and services. -Create application threat models and provide guidance on effective countermeasures -Contribute to security architecture and assist in building and rolling out processes for secure code development and deployment involving cutting edge technology -Provide subject matter expertise on encryption, security controls, and secure design and programming practices across the technology organization -Contribute to security policy, standards, and guidelines related to Information Security -Evaluate and operationalize new technologies for securing the organization -Help create product security inventory and product security lifecycle to align with standards. -Train and mentor new hire and Jr Product Security Architects. -Train and mentor Security Champions throughout the development -Share thought leadership in the product and application security space -Create security user stories and security test cases for products that are tailored to the product attributes and technology -Support and advise product owner and product development teams by ensuring technical and architectural feasibility, readiness and compliance. -Experience with secure SDLC, governance and compliance for PCI, FedRAMP and NIST What were looking for... You'll need to have: -Bachelor's degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience -Experience with performing security requirements analysis to secure the deployment of large globally distributed platforms, building threat models, do design reviews and document relevant mitigation techniques, implementing security best practices, applying applications security design patterns. -Experience with any combination of at least 3 technical disciplines, including the following: Cloud Security, Penetration Testing, Application Security, Mobile Security, Secure Development methodologies, Software Development and Coding. Even better if you have: -Good understanding of mobile application security -Experience with hands on application penetration testing -Experience securing cloud services, like AWS, Azure or GCP -Understanding of Docker, Kubernetes, and CI/CD pipeline -Hands on experience on security testing like SAST, DAST and Pen testing -Understanding of OWASP Top 10, CIS Top 20 -Understanding of authentication protocols like OID, OAuth2.0, SAML -Knowledge of application security vulnerabilities, secure coding, and countermeasures. -Written and verbal skills for communicating security concepts and solutions. -Ability to prioritize between and execute on multiple work streams. -Experience with application programming and the overall software development life cycle. -Excellent organizational and interpersonal skills. -One of more of the following certifications: CISSP, CISM, SANS, CCSK, CCSP, Ethical Hacker cert. Keywords: continuous integration continuous deployment green card New Jersey |
| [email protected] View all |
| Wed Mar 06 04:46:00 UTC 2024 |