Job Description :
Location: Maiden Lane, NY, 10038
Duration: 1month
Qualifications:
Top 5-10 technical skills required for the job:
Knowledge of web application security testing Processes and Strategies.
Working knowledge of web application security testing Tools- IBM AppScan/HP WebInspect, Burp Proxy/Zen Attack Proxy/ etc.
Demonstrate proficiency with OWASP Top 10 and industry standard of web application security standard.
Demonstrate proficiency with development frameworks and languages – Java/C#/.NET/ etc.
Demonstrate proficiency of writing secure code.
Design, implement and support security-focused tools and services.
Responsibilities:
Responsible for developing and executing formal web application security test plans to ensure the delivery of quality software applications.
Involved in test planning, preparation and communication with client prior to security test execution.
Performs web application attack & penetration (A&P) testing to find security issue such as risks, defects and logical errors.
Collects and analyzes security data from manual, automatic and static source review, and integrates them to find best way to address security issue to meet the needs of the business.
Documents all issues and assists in their resolution.
Delivers security training and education to technical staff within findings and acts as an internal security consultant to advise or influence business or technical partners.
Provides quality web application security audits across the various IT functions to ensure quality standards, procedures and methodologies are being followed.
Required Skills:
1 to 3 years of relevant work experience conducting web application security testing of mission critical applications.
Perform threat modeling, vulnerability analysis, penetration testing, code review and SDLC support.
Provide expert advice and consultancy to customers on risk assessment, threat modeling and fixing vulnerabilities.
Write technical reports based on security findings.
Critical Skills:
Excellent written, verbal and interpersonal skills.
Strong problem solving and analytical skills demonstrated by the ability to assimilate new information, understand complex topics and arrive at sound analysis and judgment.
Ability to work independently and as part of a team.
Self-Motivated.
Project execution, strategy and management.
Understand the processes, methods, and techniques needed to ensure that project deliverables and outcomes are successfully developed, within scope and meet high levels of quality and professionalism.
Identify and manage risks.
Education/Certifications:
BS in Computer Science or equivalent required.
Advanced degree (MS) and Certifications (CE|H, GWAPT, GSEC) a plus