Job Description :
Mandatory skills:
Web application security - vulnerability identification and remediation skills.
Needs good understanding of web application security vulnerabiities and how to distinguish between different types of vulnerabilities, i.e. cross-site scripting (XSS) vs. SQL Injection vulnerabilities.
Needs to understand web application security best-practices.
Skilled in identifying web application vulnerabilities, reporting on those vulnerabilities to application development teams, and generating an action plan to remediate identified web application vulnerabilities.
Skilled in creating a RACI matrix to describe the responsibilities of roles in project tasks to remediate web application vulnerabilities.
Responsible for assigning remediation work to application developers, prioritize identified vulnerabilities, and act as the primary point of contact for remediation.
Preferred skills:
Great communication skills. Able to articulate web application vulnerability remediation action plans to application development teams. Needs to understand the importance of developing secure code. Able to recommend best-practices to developers effectively and clearly post-production.
Job Roles/Responsibilities:
As the primary contact for the PCI Remediation Project, this security architect will act in an advisory role, reviewing post-production web application scanned code to identify any vulnerabilities and provide action plans for remediation to web application developers.
Assist in the completion of the PCI Compliance.
Scan web applications, review results and manage remediation plans for web application developer teams .
Assist web application development teams with remediating vulnerabilities and developing secure code.
Role will be project management, vulnerability remediation, managing a team of developers, organizing remediation action items, day-to-day web development team remediation management.