Application Security

We are looking for Application Security in Bethesda, MD for Fulltime position.

Please refer someone else if you are not available at this time or you are not right match for this job opportunity. We have great Referral Bonus up to $2500!!! Please don't miss to refer someone who are looking for projects.

Job details mentioned below-

​Title: Application Security

Location: Bethesda, MD

Duration: Fulltime

Client: Direct Client

Duties

· Systematically address application security issues and develop secure coding practices for multiple development teams

· Integration of application authentication, encryption, authorization, and access control

· Provide mitigation strategies for applications from infrastructure, architecture, and secure coding perspectives

· Utilize application security scanning tools such as IBM AppScan to interpret reports and validate identified vulnerabilities and associated risks

· Utilize source code scan tools such as Fortify, or Checkmarx to assist NLM application teams to apply the best practice for application security and catch potential vulnerabilities at early stage.

· Proactively work with team members to address security and compliance issues

· Provide education and assistance to application developers for applying Security Software Development Life Cycle

· Collaborate with development teams to prioritize and remediate vulnerabilities throughout the application lifecycle

Position Requirements

· A Bachelor’s degree in Computer Science OR related engineering field with training in software security

· Strong software engineering background with extensive experience working in complex enterprise environments implementing software development lifecycles

· Extensive experience in addressing web application security issues, such as those outlined in OWASP Top 10

· Strong knowledge of application security throughout the software lifecycle

· Experience developing secure coding practices with Java, ColdFusion, Python/Django, and PHP

· Strong knowledge and experience in securing an application’s integration with relational database management systems such as Oracle

· Experience using Tenable Security Center and validating identified vulnerabilities

· Proven ability to ensure applications are secure throughout the software lifecycle

· Ability to perform manual and automated testing to identify vulnerabilities such (BurpSuite Pro, Fiddler, Netsparker, etc.)

· Knowledge of security in both Linux and Windows environments as it pertains to Web application hosting, middleware (Apache, Tomcat, PHP, ColdFusion, Ajax), and databases (Oracle, MySQL, MS SQL Servers)

· Demonstrated experience implementing application firewall rules (such as F5 ASM, iRules, and/or Apache ModSecurity) as compensating controls to protect Web applications

· Software Security Certifications, such as Certified Secure Software Lifecycle Professional (CSSLP) is a big plus

· Excellent communication skills including presentation and documentation.

· Strong capability in evaluating application security related products

All your information will be kept confidential according to EEO guidelines.