Key Responsibilities:
? Security Assessment and Testing:
? Conduct comprehensive security assessments and penetration tests on applications to identify vulnerabilities and weaknesses…
? Analyze security assessment results and work with development teams to prioritize and remediate findings.
? Security Architecture and Design:
? Provide guidance and recommendations on secure application design and architecture.
? Review and assess application designs to ensure adherence to security standards and principles.
? Security Tooling and Automation:
? Evaluate, implement, and manage application security tools and technologies (e.g., SAST, DAST, RASP, WAF).
? Automate security testing processes to integrate security into the software development lifecycle.
? Security Awareness and Training:
? Develop and deliver security training and awareness programs for development teams.
? Foster a security-conscious culture by promoting best practices and security guidelines.
? Incident Response and Risk Management:
? Assist in incident response activities related to application security incidents.
? Participate in risk assessments and provide recommendations to mitigate security risks.
? Compliance and Standards:
? Ensure applications comply with relevant security standards, regulations, and industry frameworks (e.g., OWASP, PCI-DSS, GDPR).
? Stay updated on emerging threats, vulnerabilities, and security technologies.
Qualifications and Skills:
? Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.
? Proven experience (X years) in application security, including secure coding practices, vulnerability assessments, and threat modeling.
? Strong understanding of web application technologies (e.g., HTTP, HTML, JavaScript, RESTful APIs).
? Hands-on experience with security testing tools (e.g., Burp Suite, OWASP ZAP, Nessus).
? Familiarity with secure SDLC practices and DevSecOps methodologies.
? Excellent analytical and problem-solving skills.
? Strong communication and interpersonal skills; ability to work collaboratively across teams.
? Relevant certifications such as CISSP, CEH, or GIAC are a plus.
Job Type: Contract
Pay: From $75.00 per hour
Expected hours: 40 per week
Application Question(s):
? Able to work on W2?
? Do you have any AppSec advisory experience ?
Work Location: Remote
