Jobe Details

Senior Application Security Engineer Posted on: 06/04/2019

Infinity Consulting Solutions, Inc
  • 4 to 6 Year(s)
  • -
  • RESTON-20192, VA, US

scripting languages

  • Job Description


    Provide security recommendations as a subject matter expert for development teams during requirement and design phases of development

    Validate vulnerability resolutions and ensure they are deployed to production in a timely manner

    Tracks open issues and follows up with development teams to ensure they are being addressed

    Participate in the change management process ensuring that all releases are reviewed by security before being approved for production

    Provide guidance to application groups on application security best practices

    Collaborate with development teams to support remediation of software vulnerabilities

    Providing guidance to the product engineering teams on security testing


    Ability to perform manual and automated application vulnerability assessments and document vulnerabilities which were found and provide recommendations for remediation

    8+ years' experience in Information Technology

    4+ years' experience conducting assessments using COTS software (Burp Suite, Fortify, etc) and other tools to ensure security of applications.

    Knowledge of the OWASP Testing Framework and OWASP Top 10

    Proficiency in currently accepted software development life cycles and associated standards and procedures.

    Knowledgeable of the current application architectures (Single Page Application (SPA), 3-tier)

    Methodical and organized; able to manage multiple opportunities, projects, and partners concurrently.

    Able to multi-task and work independently with minimum supervision to meet firm deadlines.

    Participate in reviews of work done by peers and provide constructive feedback.

    Excellent communication, presentation and leadership skills


    4+ years software development using Java, C++, or scripting languages (Python, Perl, etc.)

    Experience in implementing security assessments within a Continuous Integration pipeline

    Experience with Unix and Linux operating systems

    Understanding of cloud application security as well as software defined networking

    Experience with multiple programming and scripting languages (Go, Ruby, etc.

    Understanding of Agile methodologies (Kanban, Scrum, pair programming etc.)

    Understanding of DevOps and security integration

    Experience with API security testing

  • Security Architect
    Information Technology
  • No Preference
    Contract To Hire
  • Candidate Requirements
  • Walkin Information
Recruiter Details
Doug Klares
1350 Broadway, Suite 2205, NEW YORK-10018, NY, US
Advertise with Us,