Responsibilities:

Improve and manage the application security program and the company wide secure development standards. Communicate vulnerabilities risks and remediation methods to business owners, developers and technical teams Strong knowledge of building security into continuous integration and delivery (CI/CD) pipeline Perform security testing on applications using dynamic and static analysis tools Manage penetration testing services, including bothinternal and external managed services Manage projects related to security portfolio to strengthen the overall CyberSecurity posture Strong knowledge of script languages and build automation tools on an ad-hoc basis Build security into infrastructure and architecture designs and guide the implementation with the operations team Design and assess SaaS and IaaS cloud services and virtualization technologies, e.g. Amazon Web Services (AWS) and VMWare Create and deliver knowledge sharing presentations and documentation to security, developers and operations teams Learn on the job and explore new technologies with little supervision to identify new and emerging security threats









Education/Experience:

Requires bachelor's degree in computer science or information security Requires a minimum of 7 years of professional IT work experience or a master's degree and 5 years of professional work experience Minimum of 3 years of security or developing web applications experience Minimum of 2 years of management or team lead experience Experience reading and understanding code in the following languages such as HTML5, Java, JavaScript, Objective-C, C++, C#, Python, Perl, etc. Licenses and Certifications: Preferred: CISSP, SANS Certifications Programming Certifications Knowledge of: Common vulnerabilities in the OWASP top 10 list Protocols/technologies such as SOA, HTTP, SSL, LDAP, JDBC, Servlet/JSP, SQL, XML Java Application and Java Application Server administration/tuning Skills and Abilities: Ability to understand software design algorithms Strong knowledge of one or more of the following programming languages: HTML5, ASP, Java, Objective-C , C#, C++, SQL is preferred Ability to write scripts in languages such as Python, BASH, or PowerShell for automation preferred Ability to read and debug code