This site uses cookies. To find out more, see our Cookies Policy

Security Engineers- Development Background in Chicago, IL at Interactive Business Systems

Date Posted: 8/14/2018

Job Snapshot

Job Description

Our client is looking to hire a Security Engineer with a background in Development. It's a remote position that requires employees to work in Eastern Standard Time.

Desired Qualifications

? Understanding of information security practices, policies and ability to translate

technical security requirements into language understandable by all business

and technical owners

? Skilled in understanding vulnerabilities, weaknesses, and prevention techniques

found in the OWASP Top 10 and CWE 25

? Good verbal, written communication and problem solving skills

? Knowledge and understanding of design and development of modern web

applications and mobile technologies

? Knowledge and understanding of technology testing: dynamic/static application

(DAST/SAST) and manual secure code assessments

? Ability to articulate issues, risks, and proposed solutions for various application

security problems to developers

? Ability to comprehend large, complex applications written by others from reading

source code

? Passion and enthusiasm for security and building secure products

? Ability to stay current with emerging technologies and industry trends

Technical Skills

? Experience with programming languages like Java, Angular/React Javascript,

Python.

? Experience with and understanding of web services

? Good understanding of TCP/IP and HTTP Protocols

? Experience with multiple operating systems like Linux, Windows, OSX etc.

? Ability to write Python code is a plus

? Experience with tools like findbugs, dependency-checker, AppScan, HP Fortify,

Veracode and Checkmarx is preferred but not a requirement

? Experience with at least one web application scanner/proxy such as OWASP

ZAP, Burp Suite is preferred but not a requirement

? Experience with AWS developer tools is preferred but not a requirement

? Experience with version control tools like Git, Bitbucket, Stash

? Experience on running, triaging and making risk assessments based on

vulnerabilities' proof of concepts.

? Experience on validating security fixes deployed by development teams