Job Description :
Hi!
Greetings!
We have an Immediate Software Security Engineer Opening One of Our Client, Short Hills, NJ
Position : Software Security Engineer
Experience : 9+Years
Location : Shorthills, NJ
Hire Type : On W2
Visa Status : GC / USC / H4EAD / L2EAD
Pay Rate : DOE
Duration : LongTerm
Job Description:
Essential Responsibilities:
Provide technical direction, oversight, and execution guidance for the integration of 3rd-party library vulnerability assessments tools (Black Duck, Snyk, etc into the D&B application lifecycle.
Liaison with product and application teams to use 3rd-party library vulnerability assessment tools to reduce application security risk
Author documentation on 3rd-party library vulnerability assessment tools, processes and procedures
Work with Vulnerability Management and Security Operations Center team to provide assistance in the verification of security vulnerabilities and be available to coordinate with security researchers and product teams as needed
Required skills:
Bachelor''s degree in Computer Science, Computer Engineering, or related discipline, or equivalent work experience
Familiarity with vulnerability management frameworks and concepts such as CVE, CWE, and CVSS
Working knowledge of application security static and dynamic vulnerability assessment tools
Ability to develop and maintain positive relationships with other technology teams
Well versed in various types of exploits such as XSS, CSRF, Injection, Session Fixation, Buffer Overflows, OWASP Top Ten, etc.
Scripting and/or programming skills (e.g., Python, Powershell, Java, JS, etc
Ability to work both independently and in a highly collaborative team environment
Understanding of the lean and agile framework and processes
Desired Skills
5+ years in an active technical security role
Experience with network and application penetration testing using automated tools, manual testing, and custom developed scripts
Java development experience