Executive Job Description | The Security Software Engineer is responsible for developing the Security architecture, strategy and governance for web application deployment for a Fortune 500 company.
Responsibilities
This individual will be required to work with other departments, outside organizations and all levels of management to identify and set direction.
The ability to deliver presentations to Executive Management and technical specialists to help identify the application’s function and impact on the corporate enterprise.
This is a hands-on position with collateral leadership functions. You must demonstrate mastery of hands-on information software and security competencies to be considered for this position.
Responsible for analyzing and/or administering Web Application Security controls, Web Applications Firewalls and securing data bases for information systems.
Implements, enforces, communicates and develops security policies or plans for data categorization, software applications and databases.
Serve as a mentor to Jr. Security Analysts/Engineers, including regular seminars on topics of interest and knowledge gained from attending industry conferences.
This individual will be called on to reverse engineer malware and questionable executables.
Develop architecture/configuration for Web Application Firewall (WAF) including additional sites, creating rule exceptions, and working with Software Engineers to address WAF findings in code base.
Review periodic WAF reports for impact determination/investigation, and working with applications teams to repair exploited code.
Work on acquisition teams to identity new DMZs and web applications.
Work with developers adding new web applications as they move to production. Follow web apps through learning mode into blocking mode and maintain master list of all web applications and contacts.
Support third party security testing/penetration testing.
Work with Incident Response Team (IRT) to analyze code (executables, Javascript, PDF, etc) to determine purpose of code and impact to computing resources.
BEST INDUSTRY – Broadcast Communications, Media
BEST DEPARTMENT – Software Engineering
Qualifications
Bachelor’s degree in Computer Science, Computer Engineering or related field
Must have 14+ years of work-related programming and debugging of web applications in either Java, ASP, or C#.
Deep understanding on HTTP protocol. Must be able to address/debug issues with only HTTP stream for review.
Ability to obtain a US DOD Security clearance is required
Experience working with/in both a Corporate and DoD environment.
Demonstrated expertise in analyzing intelligence information and technical data, analyzing exploitation opportunities, documenting information and processes, gathering intelligence information, interpreting analytical results, performing Internet research and writing and editing skills at a technical/professional level.
Sound Systems Engineering Principles
Ability to architect defensive countermeasures and mitigation strategies.
Must have 3+ years experience with cyber incident response and investigations.
Candidates must be either current US Citizens or Green Card holders. |
