NO C2C!! Must be W2 Eligible!!
TEKsystems is seeking for a well-rounded Application Security professional to be the "go-to" person for all things related to Application Security for a client in central Florida. This role gives an administrator the unique opportunity to impact the future state of our client's secured applications in order prevent security breaches, and become a decision maker immediately poised for growth into Offensive Security, Security Architecture or Security Management.
1. Threat & Vulnerability: Vulnerability Assessments of web based and back-end applications. Candidate will use their experience as a developer and at least 1 year of InfoSec experience to test and find security vulnerabilities in Object Oriented language (C#, Java C/C++ etc) based applications and their databases (SQL Server 2008-2014 and NoSQL).
2. White Box & Black Box Testing: Candidate will be using their experience with at least 1 tool to perform (SAST or DAST) Static Application Security Testing or Dynamic Application Security Testing depending on the stage of the SDLC. Tools used include Checkmarx, HP Fortify, AppSpider, IBM Appscan, OWASP ZAP, Burpsuit, SQLMAP, among others.
3. Vulnerability Remediation: Candidate will use their experience creating metrics and reports that highlight Vulnerability gaps including required actions and potential risks to the business. Candidate will also use their previous experience training developers to help them remediate gaps throughout their programming of client's applications.
4. Certificates are desired but not required: GWAPT, GPEN, CEH
Application Security Admin will preform the following responsibilities broken down by approximate percentage of time spent.
Perform vulnerability assessments and source code review using manual and automated tools. Assess and test security tools results for false positive before reporting vulnerability to development team using bug tracking software. Work closely with Applications development teams to retest remediated application vulnerabilities detected through security scanning tools. 55%
Track vulnerability remediation and produce metrics reporting the state of the application security programs and performance of the development teams against target requirements. 20%
Assist in the implementation and troubleshooting of vendor and in-house security tools in the CI/CD pipeline and bug tracking software using standard plug-ins and custom script. 10%
Work with the Security Architect to develop training programs regarding application security. 10%
Improve and maintain security development policies and standards. 5%
Join TEKsystems®, a leading IT staffing, IT talent management and IT services firm, and get your career on the fast track. We have more than 100 offices worldwide, and we partner with over 6,000 clients and place over 80,000 consultants per year. At TEKsystems, we seek to understand our consultants' skills, goals and interests, allowing us to present targeted job opportunities on a contract, contract-to-hire or direct placement basis. TEKsystems' leadership in the market stems from our sincere and personal commitment to driving the success of our customers, consultants and each other.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please call 888 472-3411 or email email@example.com for other accommodation options.
A little about us:
TEKsystems provides corporations with IT staffing, talent management expertise and IT services, enabling them to meet their business objective.