IT - Senior Consultant | Application Security | Application Security - ALL

Find latest similar jobs
Apply Now
Sign up for similar job alert!
Job ID :
30154
Company :
Internal Postings
Location :
Sunnyvale, CA
Type :
Contract
Duration :
6 Months
Salary :
DOE
Status :
Active
Openings :
1
Posted :
12 Mar 2021
Job Seekers, Please send resumes to resumes@hireitpeople.com
Must Have Skills:
  • Application Security ALL
  • DevSecops
  • Hands on security testing tools
Nice to have skills:
  • AZUREGCP exp
  • Java, Java script
Detailed Job Description:
  • Develop security test plans, procedures, automated test scripts and tooling that provides 100% coverage for identified security risks and regression
  • Develop a test suite and related tooling to assist in regression testing for application security vulnerabilities
  • Work collaboratively with the DevOps team in order to plan, deploy and run automated tests in test environments
  • Perform usability testing while ensuring user privacy concerns are addressed
  • Perform network penetration, web, mobile and business application testing, source code reviews, threat analysis, wireless network assessments and OT/IoT security assessments
  • Identify security vulnerabilities within web and mobile based applications
  • Provide analysis and remediation recommendations to application and infrastructure teams on security issues
  • Participate in product design reviews to provide input for potential security risks
  • Recognize and safely utilize attacker tools, tactics, and procedures

Certifications Needed: Yes

Skills Required:

  • Azure/GCP experience specifically testing cloud native software in Azure/GCP (preferred) or public clouds.
  • Testing containerized applications, PaaS resources (databases, caches, messaging systems), familiarity withthreat modeling and methodologies, testing API security, infra security, with focus on java/golang applications.
  • Expert knowledge of Windows Linux, TCP/IP, and Web services
  • Experience with various security tools and products (Metaspolit, Nmap, Qualys, mimikatz, Nessus, NeXpose, Kali Linux, BurpSuite, OWASP ZAP, WireShark, Tcpdump, etc.)
  • Experience in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Origin Analysis/Software Composition Analysis (SCA) and Database Security Scanning
  • Programing experience with java, javaScript, python, sql database

Interview Process (Is face to face required?) Yes 

Does this position require Visa independent candidates only? No

Client Services
Job Seekers
Visa Sponsorship