Job Description :
Job title: Application Security
Company: Enterprise Systems
Work location:, Chicago, IL
W2 Position only : No Corp to Corp please

3-5 years of Application Security experience with JAVA / Webservices with either of the tools - Fortify, Appscan, WhiteHat, Veracode

This individual is responsible for the development and delivery of application security education and awareness to SDLC stakeholders in accordance with policies, regulations and best practices.
The individual will provide application security requirements, design input, code review, risk assessment and testing, and provide remediation/mitigation strategies of identified vulnerabilities and
defects and ensuring they are fully executed. The individual will also recommend secure SDLC process improvements and work closely with Enterprise Security teams to maintain standards, guidelines and procedures.
Required skills:
4+ years of Java/J2EE development or code review experience
2+ years of Web Services development or code review experience
2+ years of information security experience, including application, server, and/or database experience
2+ years of experience in static & dynamic testing techniques and tools such as Fortify, Appscan, WhiteHat, Veracode, etc.
Comfort with OWASP and other secure coding frameworks.br
DESIRED
1+ years of experience in Agile development and participation in sprint teamsbr
CISSP, CSSLP, or CISM Certified or equivalent certification