Contract to Hire
Location: Albany, NY area (Rensselaer)
Overview:
You’ll join the client's talented Development Team.
- Their project is built on a multi-tier architecture including Service Oriented architecture, multi-tier web applications using Java and various other COTS products.
- Work closely with development teams to diagnose, document, and remediate application security vulnerabilities and identify appropriate security checkpoints in SDLC.
- Perform risk-based, technical assessments/penetration tests of applications, using dynamic and static scanning tools, and audits ensuring compliance with industry standards
- Consult with Development leadership on application development training.
- Research new attack vectors and stay current with cybersecurity news and trends.
Requirements:
- 8+ years Information Technology.
- 5+ years in software development role as a Developer, or Architect
- Java/Web development with strong secure coding background in RHEL and JBoss.
- Bachelor’s degree in Computer Science, or related technical field, OR equivalent combination of education and experience
- 3+years with Application Security Engineering conducting assessments, penetration testing, implementing tools for dynamic /automated code review, dynamic and static application scanning (Fortify, SonarQube); consulting on security designs of applications, potential vulnerabilities, and remediation, and creating training materials on key security concepts.
Skills:
- Strong oral and written communication skills, with a demonstrated ability to communicate complex topics to colleagues, and management.
- Demonstrated collaboration and teaching abilities.
- Strong analytical skills.
- Identify and resolve problems in a timely manner; gather and analyze information skillfully; develop alternative solutions.
- Critical thinking and creative problem solving
Plus: CISSP, CEH, CISA, OSCP, OSCE, or OSWE Certifications