Job Details

Home

REMOTE JOB for Information Security Analyst - Code and Vulnerability Analysis at Indianapolis, Indiana, USA

Email: [email protected]

From:

Syed,

Parin Technologies

[email protected]

Reply to: [email protected]

Hi

Please find the candidate details below and send me your updated resume.

Title: Information Security Analyst - Code and Vulnerability Analysis

Location: Indianapolis, IN

REMOTE

Skills:

Veracode and SonarQube, along with remediation recommendations from these tools ,

Java and secure coding standards and

Atlassian toolset

Job Description:

Information security analyst position that functions as primary security code auditor for the agency's primary application.

Key Responsibilities:

Analyze code scan output from Veracode and SonarQube, along with remediation recommendations from these tools.

Assess security risks associated with code vulnerabilities and develop a prioritization strategy that mitigates the most critical issues efficiently.

Convert scan results and remediation recommendations into well-defined stories within Atlassian Jira, aligning with the Scaled Agile Framework (SAFe) for collaboration with development teams.

Draft policies, procedures, and best practices for publication in Atlassian Confluence to ensure consistent security practices across the organization.

Monitor and validate the completion of all remediation work through subsequent code scans.

Provide regular progress updates to the information security manager.

Collaborate with development teams to implement secure coding practices and address identified vulnerabilities.

Required Skills and Experience:

2-5 years of experience in information security, with a focus on code and vulnerability analysis.

Strong knowledge of manual audit, code reviews, and remediation techniques.

Proficiency in using Veracode and SonarQube toolsets for code scanning and vulnerability assessment.

Expertise in Java programming language and familiarity with secure coding standards and guidelines such as OWASP Top Ten, CERT/CC, MITRE, Sun, and NIST.

Experience working with Atlassian toolsets, particularly Jira, ServiceDesk, and Confluence.

Understanding of authentication, authorization, session management, and secure communication mechanisms.

Familiarity with Windows and Linux operating systems.

Experience working with ORACLE and MSSQL databases.

Knowledge of third-party library security analysis and the ability to identify potential security leaks.

Excellent problem-solving and analytical skills, with the ability to translate technical findings into actionable tasks for development teams.

Strong communication and collaboration skills to effectively work with cross-functional teams.

Preferred Qualifications:

Relevant certifications such as CISSP, CSSLP, or CEH are a plus.

Experience with automated security testing tools and continuous integration/continuous deployment (CI/CD) pipelines.

Knowledge of additional programming languages such as Python, C++, or C#.

Familiarity with cloud security best practices and securing cloud-based applications.

Syed Rizvi

E: [email protected]

____________________________________________

Parin
Technologies
LLC | https://www.parintec.com/

111 Town Square Place, Suite 1203, Jersey City, NJ 07310
, USA

Keywords: cplusplus csharp continuous integration continuous deployment New Jersey
REMOTE JOB for Information Security Analyst - Code and Vulnerability Analysis
[email protected]

[email protected]
View all

Wed May 29 23:51:00 UTC 2024

To remove this job post send "job_kill 1435784" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

syed@parintec.com wrote:
From:

Syed,

Parin Technologies

syed@parintec.com

Reply to:   syed@parintec.com

Please find the candidate details below and send me your updated resume.

Title: Information Security Analyst - Code and Vulnerability Analysis

Location: Indianapolis, IN

REMOTE

Skills:

Veracode and SonarQube, along with remediation recommendations from these tools ,

Java and secure coding standards and

Atlassian toolset

Job Description:

Information security analyst position that functions as primary security code auditor for the agency's primary application.

Key Responsibilities:

Analyze code scan output from Veracode and SonarQube, along with remediation recommendations from these tools.

Assess security risks associated with code vulnerabilities and develop a prioritization strategy that mitigates the most critical issues efficiently.

Convert scan results and remediation recommendations into well-defined stories within Atlassian Jira, aligning with the Scaled Agile Framework (SAFe) for collaboration with development teams.

Draft policies, procedures, and best practices for publication in Atlassian Confluence to ensure consistent security practices across the organization.

Monitor and validate the completion of all remediation work through subsequent code scans.

Provide regular progress updates to the information security manager.

Collaborate with development teams to implement secure coding practices and address identified vulnerabilities.

Required Skills and Experience:

2-5 years of experience in information security, with a focus on code and vulnerability analysis.

Strong knowledge of manual audit, code reviews, and remediation techniques.

Proficiency in using Veracode and SonarQube toolsets for code scanning and vulnerability assessment.

Expertise in Java programming language and familiarity with secure coding standards and guidelines such as OWASP Top Ten, CERT/CC, MITRE, Sun, and NIST.

Experience working with Atlassian toolsets, particularly Jira, ServiceDesk, and Confluence.

Understanding of authentication, authorization, session management, and secure communication mechanisms.

Familiarity with Windows and Linux operating systems.

Experience working with ORACLE and MSSQL databases.

Knowledge of third-party library security analysis and the ability to identify potential security leaks.

Excellent problem-solving and analytical skills, with the ability to translate technical findings into actionable tasks for development teams.

Strong communication and collaboration skills to effectively work with cross-functional teams.

Preferred Qualifications:

Relevant certifications such as CISSP, CSSLP, or CEH are a plus.

Experience with automated security testing tools and continuous integration/continuous deployment (CI/CD) pipelines.

Knowledge of additional programming languages such as Python, C++, or C#.

Familiarity with cloud security best practices and securing cloud-based applications.

Syed Rizvi

E: syed@parintec.com

____________________________________________

Parin 
Technologies 
LLC | https://www.parintec.com/

111 Town Square Place, Suite 1203, Jersey City, NJ 07310
, USA

Keywords: cplusplus csharp continuous integration continuous deployment New Jersey 
REMOTE JOB for Information Security Analyst - Code and Vulnerability Analysis
syed@parintec.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 659

Location: Indianapolis, Indiana