Jobs

Apply for job

Software Security Analyst - REMOTE - Long-term Contract

Our direct client, a global firm with a large internal software development team, seeks a REMOTE long-term consultant to serve as a Software Security Analyst.  In this key role, you will work with application scanning tools such as Fortify-on-Demand to analyze security scans of new software builds, and then work with the development and business teams to address potentially important issues, and keep the software development process moving along safely and securely.  

This position can be performed remotely in the US, ideally working East-coast US hours . This is a long-term (12-24+ months position), very professional, team-oriented environment.  Our consultants love working at this firm, there is cutting-edge development, QA and security technology, combined with a global operation.  

Technical Skills Desired for the role:
 

  • (desired) Professional certifications in information technology security; Certified Information System Security Professional (CISSP) preferred
  • Experienced with OWASP Top Ten considerations
  • Background as a software engineer or software-adjacent position such as Quality Assurance.   
  • In depth experience and knowledge of security concepts, threat, threat modeling, vulnerability exploitation, and common website and application vulnerabilities including but not limited to, SQL Injection, Cross-site scripting (XSS) and Session Management
  • Experience or knowledge of  Fortify, Fortify On-Demand, WebInspect, Qualys, Visual Studio Team Suite, and Azure; Experience with Microsoft technologies such as C# and ASP.NET, as well as common open source code (Bootstrap, JQuery, Angular, TypeScript, etc.)
  • Experience with integrating SCA code scanning into the build process and approaches for integration into CI/CD methodologies; experience with DevOps/Agile environments and delivery models
  • Code scanning and assessment experience Manual/Automated/Static/Dynamic using Fortify and Fortify On-Demand or similar tool such as Checkmarx or Varacode

Level of Qualifications

  • Bachelor's degree in Computer Science(s), Information Technology/Security, Systems Engineering or similar area.
  • 3 – 6 years of relevant application develop and IT security experience.
  • Experience in supporting software application and system code security assessments using automated tools such as Fortify and Fortify On-Demand.
  • A holistic understanding of attack vectors, current threats, and remediation strategies.
  • Experience with computer forensics practices and procedures, basic investigations, and evidence handling is preferred
  • Able to provide support outside of standard working hours and support international teams with clear and simple written and spoken communications to both technical and non-technical business customers

 

Experience/Knowledge:

  • Demonstrated ability to lead and collaborate with a globally dispersed, multi-cultural and multi-discipline team while gaining and maintaining credibility with others
  • Background working on large-scale international projects and the ability to manage multiple processes and projects at once
  • Strong written and oral communication skills for effective communication at all organizational levels; attention to detail and pride in well-presented and accurate work
  • Customer and business focus and adeptness in interacting with customers to provide process and technical information in response to inquiries, concerns, and requests about processes, products and services
  • Conduct the review of software applications and systems from a security and privacy perspective; review and contribute to client's standards used in the solution security review process and provide security recommendations and better practices regarding secure software development in waterfall, agile, and DevOps methods

Send Resume today – immediate interview and hire!  

 

Job ID: 4859

  • Accepted file types: docx, doc, pdf, rtf, wps, txt, html.
Chat with a recruiter

Can't Find The Job You're Looking For?

Share this Opportunity?