Application Security Analyst - Jersey City, NJ at Remote, Remote, USA |
Email: [email protected] |
From: Mahesh Kumar, KK Associates LLC [email protected] Reply to: [email protected] Hi, we have below job opportunity with one of our clients. If you have any matching profiles please get in touch with me Role name: Senior Security Analyst Role Description: QualificationsExperience with DAST (AFL, Fuzzing, Burp), including creating custom farms;Experience in conducting pen tests for virtualized infrastructure;Experience in analyzing mobile applications;Programming skills in Java;Experience with k8s, Docker;Experience with traffic analyzers (Wireshark, etc.);Experience in automating routine security processes;Understanding of modern software development processes and practices: Agile, SDLC, DevOps, CI/CD;Competent written and verbal communication skills (English B1, Russian B2 )Successful participation in Bug Bounty programs;CTF experience;Familiarity with OWASP Testing Guide, OWASP Code Review Guide, OWASP Secure Coding Practices;Experience working with and supporting HashiCorp Vault;Experience with network vulnerability scanners (Nessus, XSpider, MaxPatrol, etc.)Tasks within the SDLC process: analysis of analyzer results, rule refinement, evaluation of their effectiveness;Source code analysis of applications in Java;Conducting internal penetration tests;Diving into the workings of containerized applications, understanding their implementations;Preparing recommendations for identified vulnerabilities, taking into account the specifics of the technological stack and implementations Competencies: Cyber Security - IAM Professional Services Experience (Years): 8-10 Essential Skills: QualificationsExperience with DAST (AFL, Fuzzing, Burp), including creating custom farms;Experience in conducting pen tests for virtualized infrastructure;Experience in analyzing mobile applications;Programming skills in Java;Experience with k8s, Docker;Experience with traffic analyzers (Wireshark, etc.);Experience in automating routine security processes;Understanding of modern software development processes and practices: Agile, SDLC, DevOps, CI/CD;Competent written and verbal communication skills (English B1, Russian B2 )Successful participation in Bug Bounty programs;CTF experience;Familiarity with OWASP Testing Guide, OWASP Code Review Guide, OWASP Secure Coding Practices;Experience working with and supporting HashiCorp Vault;Experience with network vulnerability scanners (Nessus, XSpider, MaxPatrol, etc.)Tasks within the SDLC process: analysis of analyzer results, rule refinement, evaluation of their effectiveness;Source code analysis of applications in Java;Conducting internal penetration tests;Diving into the workings of containerized applications, understanding their implementations;Preparing recommendations for identified vulnerabilities, taking into account the specifics of the technological stack and implementations Desirable Skills: QualificationsExperience with DAST (AFL, Fuzzing, Burp), including creating custom farms;Experience in conducting pen tests for virtualized infrastructure;Experience in analyzing mobile applications;Programming skills in Java;Experience with k8s, Docker;Experience with traffic analyzers (Wireshark, etc.);Experience in automating routine security processes;Understanding of modern software development processes and practices: Agile, SDLC, DevOps, CI/CD;Competent written and verbal communication skills (English B1, Russian B2 )Successful participation in Bug Bounty programs;CTF experience;Familiarity with OWASP Testing Guide, OWASP Code Review Guide, OWASP Secure Coding Practices;Experience working with and supporting HashiCorp Vault;Experience with network vulnerability scanners (Nessus, XSpider, MaxPatrol, etc.)Tasks within the SDLC process: analysis of analyzer results, rule refinement, evaluation of their effectiveness;Source code analysis of applications in Java;Conducting internal penetration tests;Diving into the workings of containerized applications, understanding their implementations;Preparing recommendations for identified vulnerabilities, taking into account the specifics of the technological stack and implementations Country: United States Branch | City | Location: Dallas, TX - Boynton Beach,FL~TCS - NEW YORK 1, NY DALLAS~TAMPA~Jersey City Dallas,TX~Tampa, FL~Jersey City, NJ Keywords: Application Security Analyst Email is the best way to reach me if I missed your call Regards, Mahesh Kumar KK Associates LLC. 8751 Collin McKinney Pkwy, # 1302, McKinney, TX 75070 555 Metro Place North, Suite # 100, Dublin, OH 43017 Direct: 925-298-0978 Email: shetty.m @kksoftwareassociates.com Web: www.kksoftwareassociates.com Keywords: continuous integration continuous deployment Florida New Jersey New York Ohio Texas Application Security Analyst - Jersey City, NJ [email protected] |
[email protected] View all |
Thu Aug 01 21:44:00 UTC 2024 |