*client- Grainger* *Sr. Java Application Security role*
*Downtown Chicago, IL* *10 month contract* *Feb 1, 2017 to Dec 31, 2017……. * *Need local….. if not Skype is an option here…* Purpose: This position is to be occupied by an application security professional or current or former developer specializing in secure software development practices, recognizing and discovering vulnerabilities in code, and supporting the development team in remediating security risks and issues. While this individual will report into the security engineering manager, they will be embedded in software delivery sprint teams. The individual will provide application security requirements, design input, code review, risk assessment and testing, and provide remediation/mitigation strategies of identified vulnerabilities and defects and ensuring they are fully executed . This role will be expected to drive the adoption of techniques and processes to ensure the team develops secure applications as part of our software development life-cycle. Responsibilities: This individual is responsible for the development and delivery of application security education and awareness to SDLC stakeholders in accordance with Grainger policies, regulations and best practices. The individual will provide application security requirements, design input, code review, risk assessment and testing, and provide remediation/mitigation strategies of identified vulnerabilities and defects and ensuring they are fully executed. The individual will also recommend secure SDLC process improvements and work closely with Grainger Enterprise Security teams to maintain standards, guidelines and procedures. Requirements: ** 8+ years of Java/J2EE development or code review experience ** 2+ years of Web Services development or code review experience ** 2+ years of information security experience, including application, server, and/or database experience ** 2+ years of experience in static & dynamic testing techniques and tools such as Fortify, Appscan, WhiteHat, Veracode, etc ** Comfort with OWASP and other secure coding frameworks. DESIRED: ** 1+ years of experience in Agile development and participation in sprint teams ** CISSP, CSSLP, or CISM Certified or equivalent certification Regards, Parul Gupta, IT-Technical Recruiter P: 609-632-1299, E: pgu...@sourceinfotech.com 3840 Park Avenue, Suite C-205, Edison, NJ-08820 Hangout: <http://www.inceptdatasolutions.com/> guptaparul...@gmail.com *------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------* *Disclaimer:** If you are not interested in receiving our e-mails then please reply with a "REMOVE" in the subject line at * *rem...@sourceinfotech.com* <rem...@sourceinfotech.com> *for automatic removal. And mention all the e-mail addresses to be removed with any e-mail addresses, which might be diverting the e-mails to you. We are sorry for the inconvenience.* -- You received this message because you are subscribed to the Google Groups "SAP-UK" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-uk+unsubscr...@googlegroups.com. To post to this group, send email to sap-uk@googlegroups.com. Visit this group at https://groups.google.com/group/sap-uk. For more options, visit https://groups.google.com/d/optout.
