.NET Application Security Source Code Engineer/Developer - W

Employer
CMP.jobs
Location
Washington, DC
Posted
Oct 13, 2017
Closes
Oct 16, 2017
Industry
Engineering, Security
Hours
Full Time
Job Description:This visible position serves as a .NET Developer/Security SME within the source code assessment program. The team reviews the source code to identify vulnerabilities within the bankA cents € (TM) s applications and to assist with the training of developers on best practices.Key individual contributor, with accountability for researching, designing, engineering, implementing, and supporting information security & directory technology systems (software & hardware). Utilizes in-depth technical knowledge and business requirements to design & implement secure solutions to meet customer / client needs while protecting the Bank's assets. Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse environment (eg client server, distributed, mainframe, etc.). Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience. Candidate will be a source code engineer within an experienced team that performs security threat/vulnerability assessments of critical Bank environments, applications, and technologies through both Ethical Hacking, Automated Web Scanning, and Source Code analysis.Candidate will develop enhancements and perform maintenance on the existing tools and services delivering static analysis to the enterprise. Results will be presented to development teams and application stakeholders. Must be able to act as a security practitioner representing vulnerabilities found and remediation best practices for web () and mobile (iOS/Android) applications.Associate will be required to follow standard methodologies and have the initiative to suggest process improvements. Working within a tight team framework, the associate must be results conscious as well as able to work within tight timelines in a high volume environment.Required Skills:Must have extensive experience in development and application design disciplines, with senior level development experience within a structured lifecycle with Java and/or .NET languages, .NET preferred.Firm understanding of high volume, high availability application architectures and practices.Demonstrated ability learn and apply critical thinking to a variety of situations.Excellent written and oral communication skills. Four year degree or experience in a medium/large scale IT environment.Desired Skills:Proficiency in Python and XML. Working knowledge of infrastructure and application support on UNIX and/or WindowsServer. Windows Server preferred.Demonstrated application security involvement. CISSP certification and experience with Fortify SCA and/or Checkmarx a plus.A cents € 'A cents € 'A cents € 'A cents € 'A cents € 'Enterprise Role Overview:Key individual contributor, with accountability for researching, designing, engineering, implementing, and supporting information security & directory technology systems (software & hardware). Utilizes in-depth technical knowledge and business requirements to design & implement secure solutions to meet customer / client needs while protecting the Bank's assets. Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse environment (eg client server, distributed, mainframe, etc.). Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience.Shift:1st shift (United States of America)Hours Per Week: 40