Skills and experience required:
Candidate will operate as member of application security consulting team delivering tactical mentorship and strategic consulting in terms of general application security awareness, secure development best-practices, and effective utilization of Veracode services. Ability to effectively communicate application security concepts to developers unskilled in these is essential, as is the ability to also function as a trusted advisor to security stakeholders within client organizations. Additional opportunities of the role include threat analysis and modeling, evaluation of effectiveness of compensating controls within and beyond application implementation logic, creation of client security program recommendations.
The role requires:
• BS/BA in Computer Science, Engineering or related field, or equivalent experience.
• A few years of recent software development experience.
• Understanding of Application-level security and secure coding practices.
• Proficiency in one of more of the following programming languages: C, C++, C#, Java, or PHP Hands-on experience with one or more of the following: Visual Studio or Eclipse, Bugzilla or Jira, Hudson, Jenkins, or Cruise Control. Archer, SAML/SSO, VMware Databases, Command Shell scripting.
• Client requirement gathering, prioritization and scoping experience.
• Strong technical writing skills.
• Strong oral communication skills in English and good presentation/teaching skills.
• Excellent problem-solving and organizational skills.
• Ability to apply these skills cooperatively in a collaborative team environment.
• Additional Skills & Experiences: Familiarity with CVSS, CWE, OWASP, WASC and SANS-25.Experience with source code analysis and interactive application security testing products. Understanding of common risk mitigation practices and technologies such as firewalls, ACLs and multi-factor access controls. SaaS, Professional Services and/or professional
• Training/Mentoring experience also desired.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.