HR Application Security Analyst
|Reference # :||18-01623||Title :||HR Application Security Analyst|
|Location :||Abbott Park, IL|
|Position Type :||Contract|
|Experience Level :||Start Date / End Date :||10/22/2018 / 10/21/2019|
|HR Application Security Analyst|
Resources must be able to answer questions on security and coding. Must know how to solve port 21 issues (FTP). Must know NIST, security frameworks. Must be able to stand up in front of the dev teams and explain the code issues. Please redirect your searches accordingly.
The Application Security Analyst is a member of the Cybersecurity Architecture team and will be a key member in the Client, growing application security program.
The analyst will be key member in promoting and championing security initiatives to a global development and engineering community.
The analyst will also possess the ability to discuss and present technical solutions to all levels of the business.
The ability to lead development group discussions on vulnerability mitigation, good coding practices, security risks of vulnerabilities and be a primary facilitator is essential to this role Effective communication and presentation skills
Comfortable leading in a project based / client serving model Ability to work easily with global diverse and dynamic teams
The analyst must be able to perform security assessments of desktop, web and mobile applications prior to deployment to production and post production assessments.
The analyst must have an understanding of Static, Dynamic and Interactive Application Security Testing (S/D/IAST) tools and reporting.
Experience and Skills Ideally the analyst will have 3 to 5 years development experience in a multi-cultural organization, utilizing varied software languages, development mythologies and tool chains. Able to use proxy tools (e.g. Burp Suite) and open source or commercial tools to perform code reviews. An understanding of various development methodology(e.g. waterfall, agile, DevOps) and how security testing integrates into them.
Knowledgeable in technical and software development security architectural principles.
Develop security strategies and develop guidance documentation that drive the strategy.
Provide written evaluations on new and emerging security technologies for potential suitability in the company's environment.
Contribute to the development of security policies, security standards,
Job Status: Contract/Temporary