Previous Job
Previous
Application Scanning Engineer
Ref No.: 17-00454
Position Type:Contract
Start Date: 10/09/2017
Please include a paragraph re: candidate's availability, location, applicable skills, and other pertinent information in the Summary of Qualifications tab, when submitting.
Have you ever supported a large corporate or government entity with respect to Application Scanning and remediation?
Can you be physically present in Lansing MI 5 day a week, 8 hours per day?

The client plans to schedule IN PERSON ONLY interviews for this position October 16th and 17th . Please confirm your candidate will be available to interview any of those days if selected.


Application Scanning Engineer and System Administrator for Enterprise Application Scanning Platform
Years of Experience:
5 or more years of experience in the field.

Job Description:
• Patch and update AppScan Enterprise and Source
• Reconfigure AppScan as needed, including certificate and/or LDAP changes.
• Run the user onboarding process for SAST and DAST.
• Submit new firewall requests as needed.
• Update Risk Assessment and Enterprise Architecture documents as needed.
• Remediate vulnerabilities across the AppScan environment.
• Serves as a Subject Matter Expert (SME) in the field of application security.
• Works with developers, architects, project leads/managers, business analysts, and others, in identifying security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.
• Performs security design review, threat modeling and architectural/system security assessments, to ensure that solutions are being designed with a minimal degree of technical risk. The incumbent works to identify, triage, and provide remediation guidance of vulnerabilities within software applications and systems, using a variety of tools, techniques, approaches, and methodologies.
• Security testing of applications using static testing, dynamic testing, and application penetration testing
• Security assessments, risk analysis, recommend security requirements, participate in code reviews, provide security defect remediation guidance, and serve as a consultant to other business units while acting as an Application Security Subject Matter Expert (SME)
• Supports the enterprise security architecture and provides technical expertise to troubleshoot and solve problems as needed.