This job ad has been posted over 30 days ago...



Senior Application Security Engineer Full-time

at FIS Global in Banglore (Published at 25-03-2014)

The Application Security Engineer (ASE) is responsible for promoting, designing, and evaluating application security in all phases of the application life cycle. The ASE shall ensure that appropriate and effective security techniques and solutions are identified, implemented, and used. Be a Advocate for security requirements during all phases of the SDLC
- Hands-on experience performing application penetration and security assessment with tools such as: AppScan, WebInspect, Fortify, Veracode, etc.
- Solid knowledge of penetration testing methodology and prior experience with programming in one or more server-side technologies such as Java, JSP, JSON, PHP, .Net, ColdFusion, Perl, Python, etc.
- Knowledge of OWASP Top 10, identify vulnerabilities via manual and automated testing methods as listed in OWASP and how to effectively remediate vulnerabilities associated with each
- Lead security monitoring, testing and remediation
- Experience in a hands-on role that involves evaluating and enforcing application security in all phases of the software development life cycle
- security functional testing
- Explain and demonstrate vulnerabilities to application/system owners, and provide recommendations for remediation
- Excellent problem solving and analytical skills, self-motivated; outstanding oral and written communication skills
- Expert knowledge of information security principles, web applications and a level of familiarity with malicious code and common techniques used by hackers.
- Firm understanding of risk and scoring using CVSS to appropriately classify vulnerabilities
- Risk and threat modeling, penetration testing and vulnerability assessments
- Experience in engineering or assessing the security of cloud, SaaS, and multi-tenanted applications including designing authentication and authorization requirements.
- Active member of IT Security user groups or security certification (CISSP, CEH, OSCP, etc.)
- Perform assessments of SDLC processes and provide recommendations for incorporating security
- 8+ Years’ experience with related job duties, Bachelor Degree in IT or Software Engineering

Note: Applications have been closed.

Recent jobs at FIS Global

Viewed: 1436 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend