Please REPLY TO ONLY onlydirectclient...@gmail.com then I will respond through my official e-mail id
* * *Need **IT Security /**Web Application Security Architect at Santa Ana, California for a contract position* o Must have minimum 3 years information security experience. o Must have 2+ years experience with web application scanning tools, code scanning tools, intrusion detection systems, encryption technologies, etc. o Experience interpreting and remediating vulnerabilities in web applications is required. (Correcting vulnerabilities/ improving the deficiencies such as vulnerabilities) o Must have a 3+ year software development background and understand development methodology and culture. o Experience in database security is preferred. o Experience in web and mobile application development platforms and frameworks preferred. o Experience in implementing Information Security technologies and/or processes required. o Working knowledge of OWASP (Open Web Application Security Project) o Working knowledge of virtualization and cloud computing. Job Description : The Sr. Security Engineer is responsible for providing operational security solutions that would enable the success of IT and business initiatives. The Sr. Security Engineer interfaces with IT Groups across the company, client managers, developers, business customers, third-parties, vendors, and auditors to integrate security solutions and inculcate the security mindset into the corporate culture. This is especially relevant in web, database, virtualization and mobile security as the threat landscape in these areas are on the rise. The role also co-designs (along with Security Architect) and operationalizes security solutions that can be effectively delegated to Security Analysts or other support/operations functions. The scope of Security Engineers extends across technical and administrative controls that enable the protection and availability of business and IT systems. Primary Responsibilities: - Embed application security practices into software development lifecycles - Cultivate security tools and practices to secure data assets in the web, application, database and development environments - Leads technical direction in designing and implementing security solutions for corporate technical infrastructure and business applications. - Participates in all phases of project planning in security service support, including functional requirements, design specifications, testing and quality assurance, implementation and support. - Lead technical engineering services to support and update existing security systems and works to automate processes related to security implementations, monitoring, and enforcement - Investigates, recommends, evaluates, deploys and integrates security tools and techniques to improve our ability to protect corporate web presence, assets and infrastructure. - Participate in technical risk assessments and security exposure analyses of systems, networks and business applications - Evaluate and implement security devices such as code scanning tools, firewalls, IDS/IPS, threat correlation tools, vulnerability scanning tools, encryption capabilities, etc. - Analyzes application security elements and designs to ensure secure posture while maintaining optimal application, system and network performance and cost effectiveness. - Oversees the purchase, installation, and support of security devices. - Responsible for assessing and managing information security risks to pre-existing current systems. - Assists in the planning of large scale systems projects through vendor comparison and cost studies. - Monitors, reports and resolves all security related problems and discrepancies. - Participates as a member of the Information Security Emergency Response Team. - Interacts with internal and external clients on security requirements, identifies security process and develops strategies/solutions to security issues while maintaining tight security discipline. - Develops test plan and implements rigorous testing prior to rollout of new systems into the production environment. Education : BS Degree in Computer Science, Information Technology, Telecommunications, or Electrical Engineering, or equivalent work experience. Certification: CISSP preferred Please REPLY TO ONLY onlydirectclient...@gmail.com then I will respond through my official e-mail id Please REPLY TO ONLY onlydirectclient...@gmail.com then I will respond through my official e-mail id -- You received this message because you are subscribed to the Google Groups "IT provider" group. To post to this group, send email to it-provider@googlegroups.com. To unsubscribe from this group, send email to it-provider+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/it-provider?hl=en.
