Application Scanning Engineer

Find latest similar jobs
Apply Now
Sign up for similar job alert!
Job ID :
10587
Company :
State Of Michigan
Location :
DIMONDALE, MI
Type :
Contract
Duration :
1 Year
Salary :
Open
Status :
Active
Openings :
1
Posted :
04 Dec 2017
Job Seekers, Please send resumes to resumes@hireitpeople.com
Int, type - Either Webcam or In Person.

Short Description:  

Application Scanning Engineer and System Administrator for Enterprise Application Scanning Platform.

Complete Description: 

Years of Experience: 3 -5 or more years of experience in the field.

Job Description:
  • Patch and update AppScan Enterprise and Source
  • Reconfigure AppScan as needed, including certificate and/or LDAP changes.
  • Run the user onboarding process for SAST and DAST.
  • Submit new firewall requests as needed.
  • Update Risk Assessment and Enterprise Architecture documents as needed.
  • Remediate vulnerabilities across the AppScan environment.
  • Serves as a Subject Matter Expert (SME) in the field of application security. 
  • Works with developers, architects, project leads/managers, business analysts, and others, in identifying security requirements for projects and ensures that these requirements are met as part of the software development lifecycle. 
  • Performs security design review, threat modeling and architectural/system security assessments, to ensure that solutions are being designed with a minimal degree of technical risk. The incumbent works to identify, triage, and provide remediation guidance of vulnerabilities within software applications and systems, using a variety of tools, techniques, approaches, and methodologies.
  • Security testing of applications using static testing, dynamic testing, and application penetration testing
  • Security assessments, risk analysis, recommend security requirements, participate in code reviews, provide security defect remediation guidance, and serve as a consultant to other business units while acting as an Application Security Subject Matter Expert (SME)
  • Supports the enterprise security architecture of AppScan Enterprise and provides technical expertise to troubleshoot and solve problems as needed.
Skill
Required / Desired
Amount
of Experience
3-5 years supporting IBM AppScan Enterprise (Not Standard)
Required
3
Years
3-5 years of experience with Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST)
Required
3
Years
2-3 years of administration of Windows Server
Required
2
Years
Working knowledge of Liberty, IIS, Monitor, Scan, Admin
Required
3
Years
Server.xml configuration experience
Required
3
Years
Experience with trusted cert installation in ASE
Required
3
Years
Experience with ASE in a distributed environment with multiple scanners and multiple databases
Required
2
Years
Experience upgrading ASE
Required
3
Years
2 years of administration of Active Directory LDAP and security groups
Required
2
Years
Working knowledge of SSL/TLS protocols and certificate-based solutions
Required
2
Years
Working knowledge of cryptography, including encryption and hashing, to include proper application to real-world situations
Required
2
Years
Familiar with OWASP Top 10, Software Assurance Maturity Model (SAMM), and SUITE
Desired
 
 
Java and .NET software development experience
Desired
 
 
• Basic database programming (SQL, etc) experience
Desired
 
 
• Unix, Linux, Windows systems engineering experience.
Required
2
Years
Client Services
Job Seekers
Visa Sponsorship