1+ months

Senior Security Engineer

FINRA
Rockville, Maryland 20850
  • Job Type
    Employee
  • Job Status
    Full Time

The Application Security Risk Manager (ASRM) is responsible for managing the organization’s information security risks, ensuring that security risks affecting the organization are known, evaluated for significance, appropriately communicated, and effectively addressed through the application of appropriate security controls and processes. The ASRM manages the security risk register and champions the timely resolution of security risks.

 

 

Essential Job Functions:

 

  • Solid Java Knowledge, and ideally at least historical Development Skills; e.g. a good understanding Core Java and relevant frameworks (e.g. Spring, Hibernate,).
  • Strong desire to make Security their career path
  • Strong understanding of both Web Application and Web Service architectures, as well as associated protocols
  • Application Security (AppSec) domain knowledge/experience, with knowledge of most common vulns; in order of preference:
  • Manual source code review
  • Experience analyzing DAST/SAST scan results (not just running the tools); Ideally with AppScan and Checkmarx
  •  Application penetration testing; ideally with BurpSuite
  • Web Application Firewall (WAF) knowledge/experience
  • Networking fundamentals (ideally security-centric) Basic understanding of Cloud Computing (AWS strongly preferred

Work Conditions:

  • Work is normally performed in an office environment.
  • Occasional travel and extended hours may be required.

Requirements

 

Education/Experience Requirements:

  • Bachelor’s degree in Computer Science, Information Systems or related discipline with at least five (5) years of related experience, or equivalent training and/or work experience.
  • Experience must include direct experience in several of the key areas listed: securing networks and systems architecture, design and implementation, secure software assurance, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development.
  • In-depth knowledge of one or more communications protocols.
  • Experience with more than one Cyber Security tools, including: Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control System, Network Intrusion prevention systems, and Endpoint Security Solutions.
  • Strong written and verbal technical communication skills.
  • Demonstrated ability to develop effective working relationships that improved the quality of work products.
  • Should be well organized, thorough, and able to handle competing priorities.
  • Ability to maintain focus and develop proficiency in new skills rapidly.
  • Ability to work in a fast paced environment.
  • In-depth knowledge of more than one Information Security principle and discipline.

Categories

Posted: 2020-06-10 Expires: 2020-08-09

Featured Jobs

Sponsored by:
ADP Logo

Career News

Share this job:

Senior Security Engineer

FINRA
Rockville, Maryland 20850

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast