Logo
TEKsystems

Application Security Engineer Job at TEKsystems in Marietta

TEKsystems, Marietta, GA, US


Job Description

Job Description

Top Skills' Details

1) 2 years of recent focused Application security experience which should involve a deep understanding of OWASP, secure coding practices, MITRE attack
2) Experience discovering vulnerabilities in applications and code where they need to determine if it is a true vulnerability then working with the software engineers to fix the vulnerability. This will involved static and dynamic code scanning. They uses Rapid 7 for their DAST and Check Marks for their SAST
3), should have strong network security experience and should understand things like port numbers, What is icmp, what port SSH run on? etc.
4). Candidates should have Cryptography and certificates and know how to write SQL queries

 

Job Description

This position will be accountable for the identification, prioritization, creation, tracking and coordination of various remediation plans for vulnerabilities from network based and application-based assessments. Remediation plan must be made actionable for patch team and application owners to carry out remediation. This position will be the liaison between the vulnerability management team and various IT teams and must be able to provide technical remediation details or workarounds, help track and identify asset inventory, log work tickets and exceptions and research vulnerability findings
Must be able to quickly respond and assess exposure and impact of zero-day vulnerabilities and provide management with briefings and course of action for mitigation. Will also advise on other critical and high-risk vulnerabilities that may impact operations and critical infrastructure.
Perform compliance scanning to analyze configurations and make recommendations of hardening configurations for Windows OS including servers, endpoints, VDI and thin clients.
Perform ad hoc vulnerability scans to verify remediation.
Perform vulnerability management system administration functions, as required.
This position is 100% remote