Work with the development teams to: Map high-level security, and privacy needs into requirements.Enforce security standards into existing code. Review and monitor applications for security leaks.Perform security activities for development projects that would include security design reviews and blackbox/graybox security assessments. Configure and maintain various securities testing software and apply results to security analysis. Configure and maintain various security products including, SIEM, Anti-virus, IDS and DLP.Code and demonstrate proof-of-concept exploits of identified vulnerabilities that will be utilized for future builds and standards.Schedule and coordinate activities with our development teams in planning, execution, and mitigation of identified vulnerabilities. Work with our legal council to support various industry standard compliancy initiatives critical to the organizations information privacy.
Third level degree in a related discipline required.3 – 5+ years professional experience. Good working knowledge of VB, C#, ASP and .NET. Experience with application security (confidentiality, authenticity, integrity, privacy). Experience with penetration testing at the application layer and using vulnerability scanning tools (Burp Suite, Nessus, Nmap, etc.).Experience with OS and application vulnerability and patch analysis. Understand secure file transfers.