Job Description :
Information Security Analyst
Secaucus, NJ
Fulltime Perm role
Locals; In-person interview
As a key member of the Information Security Team, The Application Security Analyst will be responsible for addressing information security requirements during all aspects of the application development process. Key responsibilities include finding, validating, and remediation of security vulnerabilities on strategic development projects. The Application Security Analyst will also be developing security standards, influencing projects during all phases of the SDLC, using application vulnerability assessment tools, and performing code reviews
Qualifications
Education and Experience:
3-5 years of experience in Information Security
Bachelor’s degree in computer science or related field
Experience with Java, or .NET development platforms
Experience with industry standard application security testing tools such as IBM AppScan, HP Fortify, WebInspect, Burp Suite, etc.
In depth knowledge of web application vulnerabilities and exploitation techniques
Knowledge of OWASP, SDLC, Encryption, Identity and Access Management, data integrity measures
Deep knowledge of integration between Security and System Development Life Cycle
Basic system administration experience with Linux and Windows Operating Systems a plus
Knowledge of scripting a plus
Security-related certifications a plus (CISSP, CEH, OSCP)
Experience with industry standard frameworks, best practices, and compliance regulations (ISO, NIST, PCI, SOX, etc