Kindly share some matching resume to *ami...@idctechnologies.com <ami...@idctechnologies.com>*
*Role: Software Security Architect* *Location**: Jersey City, NJ* *Duration**: 6 Month Contract (Citizens and Green Cards only)* *Job description:* The customer’s Security Risk Management (SRM) Group, under the leadership of the Chief Information Security Officer (CISO), is tasked to protect information assets in support of customer’s business objectives and in conformity with customer policies. The Software Security Assurance Team is a core function of SRM and is primarily responsible for establishing and guiding the Secure Software Development Program within customer. These activities include creation and rollout of software security policies and best practices, software security architecture, software security scanning, penetration testing and the education of customer software developers and testers in security best practices. The Software Security Engineer reports to the Director Software Security to ensure the control and protection of software, improve the software development process, and minimize defects and vulnerabilities in software production. *Responsibilities:* • Assess current practices and identify and implement relevant policies to ensure state of the art development practices as they relate to security • Influences the selection of Software Security Assurance (SSA) program elements including supporting tools. • Integrate software security scanning and testing into customer’s software development, build and testing programs • Conduct software security testing, including penetration testing, to confirm the results of design and code analysis, investigate software behavior, and verify that the software complies with security requirements • Identify and categorize information to be contained in or used by customer software which help determine risk and/or control solutions including application security frameworks *Requirements:* • Bachelor’s degree in a related field and/or a minimum of 7 years of equivalent experience. • *Experience performing software security architecture, design and requirements analysis for large-scale enterprise systems* • Solid understanding of a variety of software security practices, secure code reviews, vulnerability scanning methods, threat modeling, security requirements analysis and architectural risk analysis *• Expert knowledge in application vulnerability types, attack vectors and remediation approaches * • Expert understanding of the IP protocols and associated security mechanisms: TCP/IP, HTTP, SSL/TLS, PKI. • Familiarity with well-known application security sources and standards such as OWASP, WASC, NIST and CVE • Extensive applied knowledge with static and dynamic analysis tools and hacking tools *• 5+ years of enterprise software development experience. Java programming skills including knowledge of JSSE and other security features is preferred. Experience with NET/ASP/C# also a plus. • Background in mobile application development (Objective C, HTML5) and mobile security a plus. • Development experience with strong Java programming skills including knowledge of JSSE and other security features.* • Working knowledge of Java development environment including tools and framework used by developers, develops and testers (e.g. Eclipse, Spring, Jenkins, Maven, Jira, Selenium) • Experience leading enterprise deployment of application security tools, services and controls • Military education or experience may be considered in lieu of requirements above *Regards,* AMIT KUMAR *Sr. Recruiter* *IDC Technologies Inc.*| *1851 McCarthy Boulevard, Suite 116, Milpitas, CA , USA, 95035* *408 668 8348 **I **ami...@idctechnologies.com* <ami...@idctechnologies.com>* I Gtalk: Recruiter.amitk | Skype: Amitiilm* *Web: **www.idctechnologies.com* <http://www.idctechnologies.com/> "Under Bill s. 1618 Title III passed by the 105th U.S. Congress this mail can not be considered spam as long as we include a way to be removed from our mailing list. Simply send us an e-mail with REMOVE in the subject and we will gladly REMOVE you from our mailing list." -- You received this message because you are subscribed to the Google Groups "SAP BASIS" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-basis+unsubscr...@googlegroups.com. To post to this group, send email to sap-basis@googlegroups.com. Visit this group at https://groups.google.com/group/sap-basis. For more options, visit https://groups.google.com/d/optout.