“Application Security Consultant” for a 12+ Months month contract position with a client in O’Fallon, MO
Job Poster: Sandeep Reddy
Description: Must Have Skills:
Artifactory
Bitbucket
Jenkins
Job Responsibilities
Conducting application security assessments, secure source code review, secure software composition analysis of applications (web, mobile, web service, etc.).
These assessments involve manual testing and analysis as well as the use of automated application vulnerability scanning/testing tools.
Assist in the development, evaluation, implementation of application security testing, secure Container/Kubernetes infrastructure, orchestration, vulnerability management process and tools
Research and keep up to date with application security threats, techniques, tools, trends and threat mitigation strategies
Able to assist in setting the strategic direction for application security and vulnerability management programs across the firm
Responsible for all project documentation, including maintaining technical documents and business requirements
Takes lead on medium size projects
Creates business and technical requirements on projects that defines getting to implementation
Strong communication skills and technical skills with the ability to communicate between business and technical teams
Responsible for understanding security policies and industry best practices & compliance
Work experience
Hands-on experience in secure source code review, software composition analysis and vulnerability management for web, mobile and network systems
Hands-on experience in artifact build and management, software composition analysis and vulnerability management for container, cloud and web applications
Prior experience in Programming & Scripting such as Java, Groovy, Python and PowerShell is preferred
Knowledge of secure software development life cycle (SSDLC), DevSecOps, Cloud, CI/CD pipeline and SSDLC process Automation is desired
Knowledge of OWASP, SANS, or other security-related frameworks and penetration testing methodologies
Current knowledge of application security best practices, common exploits and threat landscape
Experience with application threat modeling or other risk identification techniques
Strong relationship building skills and collaborative style to enable success across multiple partners desired
The candidate should be familiar with laws, regulations, and industry standards such as PCI DSS, GDPR, CCPA, GLBA, NIST SP800-53 and Cybersecurity Framework, and International Organization for Standardization (ISO) series 27001/2, 27005, 31000.
Education
Bachelor’s degree and/or a combination of equivalent experience and formal training/education.
About US Tech Solutions:
Your talent, our opportunities - This is the premise behind US Tech Solutions. You have the skill we have the opportunity. As a team, we work passionately for you to get the right career opportunity across industry verticals and functions. For past sixteen years, leading Global Companies and Fortune 500 come to us to get the right talent. Whether you want to work as full-time, contractor or part-time, technical or non-technical our talent consultants will connect with the right career opportunity globally. Connect with our talent team today. USTECH was founded in 2000 by Manoj Agarwal. Today, we are a global firm offering talent solutions to 150 customers including 20% of Fortune 500 across Financial Services, Healthcare, Life Sciences, Aerospace, Energy, Retail, Telecom, Technology, Manufacturing, and Engineering. We are headquartered in New Jersey with 40 global locations across the USA, Canada, Europe, and India. Deloitte has recognized USTECH as one of the fastest growing private businesses for the past five consecutive years and INC 500 for the past three. We have also been rated “The Top Business in the US" by Diversity Business since 2011. To learn more about how US Tech Solutions visit our website: www.ustechsolutions.com. “US Tech is an Equal Opportunity Employer" and “s & all other parties authorized to work in the US are encouraged to apply." Apply: Interested candidates are requested to send their resume to Sandeep Reddy at
