| Urgent requirements for Hybrid position at Plano, Texas, USA |
| Email: naresh@savi-tech.com |
|
https://jobs.nvoids.com/job_details.jsp?id=1543284&uid= Position 1: Title: Golang SME Location: Plano, Texas (Hybrid/Onsite) Duration: 12 Months+ Description: Create Golang based microservices and libraries Perform code reviews Contribute to our coding standards and practices Implement cryptographic algorithms for signing and encrypting Work with different teams for end-to-end testing Guide and Contribute to our architecture and infrastructure Create and guide internal documentation processes Requirements: Strong communication skills, specifically giving/receiving constructive feedback in a collaborative setting Minimum of 4 years of programming experience (i.e., C, C++, C#, Rust, Python, Golang) Good understanding of API design and security practices Understanding authorization vs authentication Rest and grpc Experience with AWS infrastructure and services including deploying applications and securing applications and sensitive data in cloud environment. Experience working with container technologies Demonstrable ability to architect, build, and operate distributed systems to solve problems Experience in secure coding Good understanding of security concepts like TLS, PKI, SAML/OAuth, Key management, hashing algorithms Understanding of CI/CD, Artifactory, SonarQube Position 2: Job Title: JAMA & Github Administrator Location: Plano, Texas, United States (Hybrid/Onsite) Duration 12+ months Responsibilities Platform Administration: Manage and administer JAMA , including user access, permissions, and system settings. Ability to handle JAMA setup for the projects to handle requirements, traceability, and configurations. Ability to integrate JAMA with external products like JIRA using JAMA Connect, APIs. Ability to generate the traceability reports of requirements with complete info of change log. Also, any reports required for status tracking. Sync JAMA and JIRA information based on custom workflow agreed with business users. Admin knowledge of Github to create repos using pre-defined branching strategy. Automation of Repo creation, merge / delete repos based on information coming from JIRA / JAMA. Complete Traceability of code changes for individual requirements. AWS services knowledge to handle deployed services, maintenance, security, and APIs. Good to have knowledge on Microsoft SharePoint / Confluence. Collaboration with Teams: Work with various internal teams for approval on all solutions delivered based on need and requirements provided. Documentation: Maintain comprehensive documentation related to JAMA and Confluence processes and administration. Requirements Knowledge of JAMA Admin & Configurations Knowledge of Github Maintenance & Configurations AWS Services Support, configuration, and maintenance Good to have Confluence & SharePoint & JIRA Position 3: Title: Application Security Engineer (GitHub, GitLab, Jenkins, GoLang- Focused) Location: Plano, TX (Hybrid/Onsite) Duration: 12+ Months (Possible extensions) Summary: As a Senior Application Security Engineer, you will play a critical role in ensuring the security of applications and infrastructure for connected services. This role is responsible for designing, implementing, and maintaining security solutions to remediate identified vulnerabilities and involves active participation in application development. Essential Functions: Engineers need to have strong development skills in Java, GoLang, AWS services, and possibly mobile application development. Hands-on development experience is crucial as this role requires active development involvement. Conduct security assessments on applications, including static and dynamic code analysis, to identify vulnerabilities. Provide detailed reports and artifacts, along with recommendations for remediations. Work collaboratively with multiple teams to remediate identified vulnerabilities and engineer solutions to meet security standards and guidelines. Assess and enhance the security posture of cloud-based environments, such as AWS. Respond to information system security incidents, including investigating, implementing countermeasures, and recovering from computer-based attacks, unauthorized access, and policy breaches. Coordinate with third-party incident responders, including law enforcement. Develop and maintain application security controls and countermeasures. Collaborate on security research activities, such as testing tools and assessing emerging threats that may impact cybersecurity. Competencies: Strong problem-solving skills and ability to perform under pressure. Effective leadership, diplomatic negotiation, and motivational skills. Excellent communication skills, with the ability to articulate clearly, persuasively, and positively. Strong interpersonal skills, capable of effectively collaborating across all levels of an organization. Demonstrated accountability, self-motivation, and a collaborative approach within a small, cross-functional team. Ability to adapt quickly to new processes and technological changes. Additional Skills (added): Proficiency with GitLab for version control and CI/CD pipelines. Experience with Datadog for monitoring and analytics. Familiarity with AWS security services and best practices Position 4: Job Title: Product Security Engineer- Mobile App Security Location: Plano, Texas, United States (Hybrid/Onsite) Product Security Engineer- Mobile App Security Description: Product Security Engineer will be responsible for end-to-end security testing with a focus on Android/iOS application security. The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, and contribute to the advancement of the team. Summary: Mobile Application Security Engineer will be responsible for conducting manual and automated Security testing and requirements verification such as MASVS/CWEs on iOS/Android application Perform security assessment, and penetration testing including but not limited to mobile application binary analysis, source code review, IPC, and SDK analysis Experience analyzing the application sandbox on iOS and Android privilege issues[D(1] Participate in the mobile application development, and facilitate the security requirements development and verification Identify hardcoded secrets, insecure storage, insecure communication, improper permissions, sensitive disclosure, and insecure use and validation of data entering platform features (i.e. DeepLinks, Exported Activities/Content Providers). Identify weak or deprecated algorithms used in 3rd party and internal libraries Produce reports/artifacts, recommendations for remediations, and provide support to strengthen the security posture of Android/iOS applications Familiarity with Mobile Security Testing Guide and ability to leverage the framework and test both iOS and Android applications Participate in various security projects, technical design review, code review, and test specifications Identify the use of deprecated mobile components and methods such as WebViews and vulnerable programmatic deeplink handlers Requirements Hands-on experience performing security assessments on OS or application-level of iOS/Android applications Strong understanding of security testing framework for Android/iOS applications (e.g., OWASP, SANS) Advance skills in secure coding best practices in any programming languages such as C/C++, Java, Objective C, Swift, SwiftUI, Kotlin, and Python The successful candidate will be a highly technical, passionate, and self-driven individual who loves to learn, solve problems, grow, and contribute to the advancement of the team Knowledge of Inter Process Communication (IPC) on Mobile Platforms Proficient in writing scripts in various languages such as Bash, and Python Proficient knowledge of APIs, and authentication protocols such as OAuth, SAML, etc. Knowledge of software development lifecycle (SDLC), cloud security, and iOS/Android reverse engineering Hand-On experience on testing tools such as Burp Suite, Frida, dissemblers, debuggers, dynamic instrumentations, and static code analysis Ability to articulate complex technical concepts to a non-technical audience Experience mobile application CI/CD pipeline Generating test reports, and recommending the appropriate course of action, and supporting the mitigation and re-validation efforts Regards, Naresh|| Savi Technologies, Inc 1325 Satellite Blvd NW||Building 200, Ste 201||Suwanee, GA 30024-4651 Tel: 201 884 6173 ||Email: Naresh@Savi-tech.com || http://www.savi-tech.com -- Keywords: cprogramm cplusplus csharp continuous integration continuous deployment information technology Georgia Texas Urgent requirements for Hybrid position naresh@savi-tech.com https://jobs.nvoids.com/job_details.jsp?id=1543284&uid= |
| naresh@savi-tech.com View All |
| 07:34 PM 09-Jul-24 |