HI *please e-mail me resume on nik...@vastika.com <nik...@vastika.com> *
If you are Interested and available for the Job, Please revert back with latest resume, expected pay rate, availability and other details required for submission to nik...@vastika.com Title: Application Security Architect Location : *Chicago, IL* Duration : 6+months/Contract *Interview Mode:**-** Phone and **Face2Face * *Need USC or GC only* The Application Security Architect will lead and actively manage application security. Set the overall direction, establish the appropriate risk models, design controls, and continuously assess efficacy of our application security program. Drive security and process improvements to software development lifecycle (SDLC). This position will use current application security disciplines and best practices to ensure the confidentiality, integrity and availability of the Company’s information assets. This role supports the activities of the Company’s Application Security team including project planning, security requirements, design review, security testing, security defect remediation, education & awareness, related policies and procedures, and management metrics and reporting. *Duties and Responsibilities* - Partner with internal project development teams - Advocate application security and best practices: - Participate in business logic requirements and solution architecture - Challenge assumptions affecting integrity and confidentiality - Ensure proper inclusion, selection, and implementation of best practices. - Scrutinize data collection, validation, handling, and retention - Lead application security program: - Subject matter expert for secure SDLC - Embed appropriate application security testing and controls into SDLC - Work with project teams to design, develop, test, select, and use appropriate security measures. - Coordinate periodic 3rd party assessments - Provide guidance, and assist as needed, with secure source code reviews - Coordinate security training efforts - Review, recommend, and research new technology, process, or policy to support mission. - Recommend solutions that scale, drive consistency, and reduce human effort. - Participate in training and education to maintain skill relevancy. *Education and Training* - Bachelor’s degree in Computer Science (or equivalent) or a related discipline Required Skills - 7+ years of experience in security environment management or an equivalent combination of education and work experience - 2+ years experience designing and implementing application security requirements and controls. - Excellent communication, analytical and troubleshooting skills. - Familiarity with application security related services and process assessments and evaluations based on NIST, ISO and ITIL standards. - Exposure to one or more higher level programming languages. (Java preferred) - Fostering secure coding practices - Validating and remediating application vulnerabilities - A combination of: Code review, static testing, dynamic testing, and/or application penetration testing - Relevant testing tools: Veracode, Burp, WebInspect - Vulnerability Scanning: Veracode or WebInspect - Effectively communicating security issues with developers and business leaders - Exploration and validation of business logic - Authentication methods and standards - Single sign-on (SSO) standards, tools, and frameworks - Security investigations and evidence collection - SDLC *Nikhil Gupta* *Sr. Technical Resource Specialist* *214-628-5329\ nik...@vastika.com <nik...@vastika.com>* *1200 W Walnut Hill Ln. Suite 2200, Irving, TX 75038* *Add me on your Hangout:-nikhil.rgtal...@gmail.com <nikhil.rgtal...@gmail.com>/nik...@vastika.com <nik...@vastika.com>* *LinkedIn:-* *https://www.linkedin.com/pub/us-tr-recruiter/91/373/a46 <https://www.linkedin.com/pub/us-tr-recruiter/91/373/a46>* -- You received this message because you are subscribed to the Google Groups "Oracle Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to oradev+unsubscr...@googlegroups.com. To post to this group, send email to oradev@googlegroups.com. Visit this group at http://groups.google.com/group/oradev. For more options, visit https://groups.google.com/d/optout.
