Sr. Application Security Consultant

Company: SGA Inc.
Location: Cary
Posted on: November 24, 2022

Job Description:

Software Guidance & Assistance, Inc., (SGA), is searching for a Sr Application Security Consultantfor a Contract-to-hireassignment with one of our premier Financial Services/ Insuranceclients in Cary, North Carolina.This will be a Hybrid remote/onsite position 2-3 days/week (but on site therefore must be local to the area on day 1).



Our Clients' Global Application Security team's mission is to identify, protect, detect, respond, and recover from threats to business applications in near real-time. This is a hands-on technical role where you will be accountable for the timely delivery of application security compliance testing.



You will be the front-line of defense working directly with application developers and program managers to ensure that secure SDLC processes for Agile and Waterfall development have security built in through automation and that software vulnerabilities are identified early in the SDLC and that they are remediated by application developers. You will be responsible for managing a portfolio of business applications, that include web applications, mobile applications, and API services. This is a highly visible role that supports the business and cybersecurity goals of senior leadership. Your technical knowledge, analytical thought process, and disciplined operational rigor are your keys to success.



Responsibilities:

• 
  
• Provide security testing coordination and consultation services to application development teams and other enterprise stakeholders as required for a portfolio of API services, web, and mobile applications.
  
• Drive the discovery, understanding, and remediation of application vulnerabilities that are found using static code analysis, dynamic analysis, and open source software composition analysis tools.
  
• Promote a secure-by-design and Agile security culture across development teams.
  
• Enforce compliance with application security policies and standards.
  
• Continuously increase the effectiveness (i.e., planning, communication, and execution) of the global application security program.
  
  
  
  Required Skills:
  
  
  • 
    
  • Bachelor's degree in Computer Science, Cyber Security, Information Systems, or related discipline.
    
  • 6+ years of combined experience in software development or application security testing and program management.
    
  • Experience with static code analysis, dynamic analysis, and open source composition analysis using managed security testing platforms and application ethical hack testing.
    
  • Conversant in the SANS/CWE Top 25 and the OWASP Top 10 as well as API security testing best practices and remediation.
    
  • Strong technical communication skills to effectively and succinctly, convey vulnerability flaw details and a recommendation for remediation to developers and leadership.
    
    Preferred Skills:
    
    
    • 
      
    • Professional certifications such as CSSLP, CEH, OSCP, or a SANS certification.
      
    • Ability to perform secure code reviews. Programming language proficiency in Java, JavaScript, C#, Python, or GoLang.
      
      
      
      SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .
      
      
      
      EEO Employer: Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status.

Keywords: SGA Inc., Cary , Sr. Application Security Consultant, Professions , Cary, North Carolina