CareCentrix

  • Technical Specialist - Application Security (Remote)

    Job Locations Remote
    Job ID
    2018-6130
    Category
    Information Technology
  • Overview

    Do you love to discover and help fix security vulnerabilities? Are your favorite hacking tools Burp and the command line? Are you more comfortable in an IDE than in Word? If so, you might be the candidate CareCentrix is looking for!

     

    As a Technical Specialist of Application Security, you will impact CareCentrix’ business technology strategy and implementation by driving application security from red- and blue team perspectives. You will be responsible for evaluating the security of Business Technology (BT) assets including network appliances, web applications, and web services. You will also be responsible for supporting BT teams in designing and implementing secure solutions.

    Responsibilities

    • Plan and execute penetration tests against a variety of targets, from networking appliances to complex web applications
    • Select, design, and create appropriate tools to aid and to automate penetration testing
    • Document penetration test methodologies
    • Document penetration test findings
    • Analyze findings and make recommendations for improvements
    • Support CareCentrix’ Secure Development Lifestyle by creating and presenting training materials
    • Assist in SDL activities such as design reviews, threat modeling, code review, testing, and incident response
    • Mentor developers in secure coding practices
    • Review and extend static and dynamic application security testing tools
    • Help lead organization-wide secure development initiatives.

    Qualifications

    • Bachelor’s Degree in Information Technology or Computer Science strongly preferred.  
    • 5 or more years’ experience in penetration testing web applications
    • Must have 5 or more years’ experience in secure coding techniques
    • Must have an excellent understanding of OWASP Top 10 vulnerabilities, CWE and MITRE classifications, and related mitigations
    • Must have in-depth experience with manual and automated penetration testing strategies in network, web application, and web services technologies
    • Must be able to develop new testing tools in a modern programming language such as Java, Python, Perl, C#, or Powershell
    • Must have extensive experience with Burp Suite Pro and other assessment tools
    • Advanced security certification, preferably hands-on penetration testing certification such as GWAPT
    • Self-motivated and comfortable making day-to-day decisions.
    • Strong analytical skills.
    • Ability to work well in a fast paced, constantly changing environment.

     

    *This role can be worked remotely.

     

    CareCentrix maintains a drug-free workplace in accordance with Florida's Drug Free Workplace Law.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed