Dear All,
Kindly send your profiles to hema@empowercsi.com & resumes@empowercsi.com
Job Title : Information Security Engineer
Relevant Experience (Yrs) : 3+ years
Technical/Functional Skills : Application Security Analyst
The client requires the services of an Application Security Analyst to assess, evaluate, and recommend appropriate security controls to be integrated into the life cycle of software and IT infrastructure development and enhancement projects. This analyst will also test for code vulnerabilities and advise developers on appropriate fixes. Based on review and diagnostic tests, the Analyst will recommend and devise solutions to ensure application and infrastructure development processes are secure and advise on potential vulnerabilities in the SDLC or of specific code vulnerabilities.
Responsibilities Include:
· Assist the Application team in the SDLC Application Security program
· Perform White-Box and Black-Box Web Application Security Assessments on Web-enabled applications.
· Assess application and infrastructure projects against secure coding policies and practices.
· Ensure adherence to the Enterprise Security Architecture, Internal Controls over Financial Reporting, and other risk and control requirements as necessary.
· Review application source code and database SQL and stored procedure code for potential vulnerabilities and exploits.
· Perform User Access assessments and provide new processes and control matrices for user access control.
· Evaluate new and emerging products and technologies.
· Assist with Security Awareness and Training, especially but not limited to IT project teams.
Selection Criteria
Required
- Bachelors Degree. Computer Science or Information Security preferred
- Minimum of 2 years in application information security
- Knowledge of the detection, exploit and prevention of software vulnerabilities
- Knowledge of Hailstorm , Nessus and/or Coreimpact
- Knowledge of Web technology including web management solutions.
- Knowledge and experience in secure application design and implementation, specially pertaining to networked and web-based applications
- Minimum of 2 years in application development in C/C++, .Net, Java, or J2EE
- Should be a highly motivated, results oriented team player with excellent communication and presentation skills.
Preferred
- Knowledge of Oracle database architectures and database query languages
- Knowledge of IBM Websphere and MQ technologies
- Knowledge of Lotus Notes / Domino 7 and 8
Professional certification, such as CASS, CISSP
Experience Required : 6+ years
Roles & Responsibilities : Information Security Engineer
Generic Managerial Skills :Need good communication, interpersonal and technical lead skills
Education : Bachelor Degree/Master's is plus
Work Location : Washington DC
Thanks & Regards,
Hema
www.empowercsi.com
-----------------------------------------------------------------------------------------
USA :510-512-8069(W)|510-371-5544(C)|510-578-8255C|510-740-3549(F)
UK :044-137223-6323
India :91-9940045456
-----------------------------------------------------------------------------------------
USA :510-512-8069(W)|510-371-5544(C)|510-578-8255C|510-740-3549(F)
UK :044-137223-6323
India :91-9940045456
http://www.empowercsi.com
Empower Consultancy Services Inc
USA| United Kingdom| India
------------------------------------------------------------------------------------------
http://ecsirequirements.blogspot.com/ and http://ecsipermanentreqs.blogspot.com/
Empower Consultancy Services Inc
USA| United Kingdom| India
------------------------------------------------------------------------------------------
http://ecsirequirements.blogspot.com/ and http://ecsipermanentreqs.blogspot.com/
-----------------------------------------------------------------------------------------
DISCLAIMER: This message (including attachment if any) is confidential and may be privileged. Before opening attachments please check them for viruses and defects. Empower Consultancy Services will not be responsible for any viruses or defects or any forwarded attachments emanating either from within EmpowerCSI or outside. Any unauthorized use or dissemination of this message in whole or in part is strictly prohibited. Please note that e-mails are susceptible to change and EmpowerCSI shall not be liable for any improper, untimely or incomplete transmission. We respect your on-line privacy. This is not an unsolicited mail. Under Bill 1618 Title III passed by the 105th US Congress this mail cannot be considered Spam as long as we include contact information and a method to be removed from our mailing list. If you have received this message by mistake or are not interested in receiving our e-mails, please reply with a "REMOVE" in the subject line and delete this message from your system. We are sorry for the inconvenience caused to you
DISCLAIMER: This message (including attachment if any) is confidential and may be privileged. Before opening attachments please check them for viruses and defects. Empower Consultancy Services will not be responsible for any viruses or defects or any forwarded attachments emanating either from within EmpowerCSI or outside. Any unauthorized use or dissemination of this message in whole or in part is strictly prohibited. Please note that e-mails are susceptible to change and EmpowerCSI shall not be liable for any improper, untimely or incomplete transmission. We respect your on-line privacy. This is not an unsolicited mail. Under Bill 1618 Title III passed by the 105th US Congress this mail cannot be considered Spam as long as we include contact information and a method to be removed from our mailing list. If you have received this message by mistake or are not interested in receiving our e-mails, please reply with a "REMOVE" in the subject line and delete this message from your system. We are sorry for the inconvenience caused to you
__._,_.___
.
__,_._,___
