IBM AppScan Enterprise Subject Matter Expert (SME)  

 Location Remote
Posted by Kumar Mangala on 09 Oct 2017
 Duration 23 Oct 2017 to 31 Oct 2018
 Job Type  Contract
 Sub Type  Corp to Corp 1099 W2-Contract W2-Salary
 Payrate $60 per hour All Inclusive


IBM AppScan Enterprise   Static Application Security Testing (SAST)   Dynamic Application Security Testing (DAST)  

Description

Role Description:


  • Patch and update AppScan Enterprise and Source
  • Reconfigure AppScan as needed, including certificate and/or LDAP changes.
  • Run the user onboarding process for SAST and DAST.
  • Submit new firewall requests as needed.
  • Update Risk Assessment and Enterprise Architecture documents as needed.
  • Remediate vulnerabilities across the AppScan environment.
  • Serves as a Subject Matter Expert (SME) in the field of application security.
  • Works with developers, architects, project leads/managers, business analysts, and others, in identifying security requirements for projects and ensures that these requirements are met as part of the software development lifecycle.
  • Performs security design review, threat modeling and architectural/system security assessments, to ensure that solutions are being designed with a minimal degree of technical risk. The incumbent works to identify, triage, and provide remediation guidance of vulnerabilities within software applications and systems, using a variety of tools, techniques, approaches, and methodologies.
  • Security testing of applications using static testing, dynamic testing, and application penetration testing
  • Security assessments, risk analysis, recommend security requirements, participate in code reviews, provide security defect remediation guidance, and serve as a consultant to other business units while acting as an Application Security Subject Matter Expert (SME)
  • Supports the enterprise security architecture and provides technical expertise to troubleshoot and solve problems as needed.


 


  

Qualifications

 
  • 3-5 years supporting IBM AppScan Enterprise - Required
  • 3-5 years of experience with Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) - Required   
  • Familiar with Windows Server - Required   
  • Familiar with OWASP Top 10 - Highly desired    
  • Familiar with Software Assurance Maturity Model (SAMM) - Highly desired   
  • Working knowledge of LDAP, Active Directory and security groups - Required   
  • Working knowledge of cryptography, including encryption and hashing - Desired   
  • Working knowledge of SSL/TLS protocols and certificate-based solutions - Required   
  • Java and .NET software development experience - Nice to have   
  • Basic database programming (SQL, etc) experience - Desired   
  • Unix, Linux, Windows systems engineering experience - Desired   


 

This position requires the successful completion of a background investigation and/or drug screen.
 Apply to this Job

Kapital Data Corp

 kapitaldata.com
 Location:
PO Box 159 Langhorne PA
19047
  Other Jobs

 Syst Engineer --TeamDynamix Minn, MN -IT Asset Mang (ITSM/ITAM/TDX, iPaaS/Boomi (cloud based integration)
 Minneapolis, Minnesota
 IT - Bus Ana - ERP (JDE) - MPLS, MN (onsite, local preferred)
 Minneapolis, Minnesota
 Privileged Access Management (PAM) BeyondTouch Consultant - MPLS, MN (REMOTE)
 Remote
 IT ERP Program / Project Manager - MPLS, MN
 Minneapolis, Minnesota
 Info Security Sr. Project Manager - MPLS, MN (hybrid - local preferred)
 Minneapolis, Minnesota