IT Security

Position: IT Software Security Location: Los Angeles, CA Duration: 6+ Months/ Full Time permanent Interview mode: Zoom Job Description: Assist in evaluating, planning, configuration, and implementation of new/existing security applications/tools Systematically address application security issues and develop security practices. Integration of application authentication, encryption, authorization, and access control Manage security vulnerabilities and compliance for Join Web Applications and Data Stores Conduct manual and automatic static and dynamic security scans Collaborate with Engineering and Operations teams to address security vulnerabilities by either installing 3rd party security technologies or developing new software or fixing existing software Monitor and analyse security data Good experience in Veracode Assist in the development and implementation of security plans, policies, and procedures Review vulnerabilities and track resolution Experience with Application Security testing methodologies and Penetration Testing techniques Keep incident documentation and runbooks updated, covering the full incident lifecycle, Work with engineering teams to ensure systems are well-prepared for incident-response activities Monitor SLA for incidents and coordinate with multiple teams on the incident assignment. Required Skill Set: Extensive experience in addressing web application security issues Strong knowledge of application security throughout the software lifecycle Strong knowledge and experience in securing an application’s integration with relational database management systems such as MS SQL Experience using Tenable Security Center and validating identified vulnerabilities Software Security Certifications, such as Certified Secure Software Lifecycle Professional (CSSLP) is a big plus CISM or CISSP will be a big plus Experience with Cloud development and configuration best practices and security compliance Experience in Penetration Testing frameworks Strong understanding of web and mobile application security vulnerabilities and concepts. Communicate and escalate as per the defined procedure.