Immediate need for a talented Senior Application Engineer Information Securitywith experience in the Logistic Industry. This is a 12+ Months contract opportunity with long-term potential and is located in Charlotte, NC. Please review the job description below.
Job ID: 21-23980
Key Responsibilities:
Job ID: 21-23980
Key Responsibilities:
- Represent the Global Information Security team and collaborate with technical leads, developers, DevOps engineers, project managers, third party vendors and business unit stakeholders
- Work with application teams to ensure that security controls are followed across the SDLC
- Guide and perform security activities including risk assessments, vulnerability scans, manual testing/verification of findings, and review of findings with application teams
- Testing and analysis, code review, static and dynamic (including mobile) application testing, and manual assessment of applications
- Consume and prioritize automated scan results; provide remediation guidance and help reduce overall risk to the organization’s applications
- Review third party assessment results, assist teams to ensure that results are understood and plans for remediation are put in place and followed
- Bachelor’s degree (or equivalent) in relevant field.
- Minimum 2 years in similar roles.
- Experience with scripting/automation.
- Ability to read and write Python (experience with Pandas library a plus).
- Experience working with databases, understanding and writing queries.
- Strong knowledge of OWASP and familiarity with web application vulnerabilities and how to remediate them.
- Working knowledge of a variety of programming languages with emphasis on C#, Java, JS, .NET, Angular, and HTML.
- Knowledge of and experience with commercial and open source security testing tools (e.g. Checkmarx, Veracode, AppScan, AppSpider, NowSecure, Burp Suite, OWASP Zap, Arachni, Nikto, BlackDuck, Nmap, Kali Linux, Metasploit framework, Wireshark, etc.)
- Understanding and experience in securing cloud applications / infrastructure.
- Proficiency in Microsoft Office and Windows OS, and familiarity with Linux systems