Overview
Remote
$120,000 - $135,000
Full Time
Skills
SAST
security
Application
SAML
DAST
Oauth
Job Details
Greetings,
I hope you're doing well.
Please go through the below job description and if you find it interesting, please send me your resume.
Job Title: Application Security Engineer
Job Location: (Newark, NJ) Remote
Job Description:
5-10 years of experience is required.
Must have skills:
Must have skills:
- Application security experience
- SAST
- DAST
- SAML
- Oauth
skills.
- Review enterprise architecture diagrams and recommend security related enhancements.
- Model attack vectors and design security controls to mitigate risk.
- Strong knowledge of cloud security concepts with SaaS, PaaS and IaaS platforms and the architectural knowledge of Amazon Web Services (AWS) and Microsoft Azure cloud services.
- Plan, design, develop and maintain security technologies, diagrams, processes and procedures.
- Develop and implement enterprise-wide and cross-functional integration solutions.
- Research and recommend new industry IT cyber security models, management strategies and effective resource utilization models that can be presented to Senior Leadership (i.e. Directors and above).
- Conduct technology reviews and audits that ensure computer systems are built to reference security architecture principles.
- Help build security into infrastructure and architecture designs and guide the implementation with the operations team.
- Create and deliver knowledge sharing presentations and documentation to security, developers and operations teams.
Education/Experience:
- Prefers BA/BS degree from an accredited college or university in Information Security, Computer Science, Information Management Systems, or in related field.
- 8+ years of professional business experience in IT and/or Information Security or a Master's degree in Information Security, Computer Science, Information Management Systems, or in related field with 6 years of professional work experience in IT and/or Information Security.
- Requires a minimum of 4 years of experience in product/application security, enterprise security architecture, and/or threat modeling or architecture risk analysis.
Knowledge of:
- Application security tools such as: HTTP and TCP proxies, fuzzers, scanners, debuggers, simulators, etc.
- Enterprise security tools such as anti-malware, EDR, IDS/IPS, SIEM, microsegmentation, DLP, IAM
- Common vulnerabilities in the OWASP top 10 list
- Protocols/technologies like SOA, HTTP, SSL/TLS, LDAP, JDBC, Servlet/JSP, SQL, HTML, XML
- Common architecture patterns such as three-tier, monolith, microservices
- Amazon Web Services (AWS), Microsoft Azure, Docker, and/or Kubernetes
- Encryption standards
- Authentication and Authorization standards such as OAuth 2.0, OpenID Connect (OIDC), and SAML 2.0
- Enterprise Architecture frameworks such as TOGAF
- FAIR Risk Assessment
Skills and Abilities:
- Requires strong verbal and written communication skills
- Ability to understand software design algorithms
- Ability to write scripts in languages such as Python, BASH, or PowerShell for automation preferred
Regards, Lucky Tomar eSolutionsFirst LLC Reston, VA-20191 |
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.