Application Security Engineer job opportunity is available in Atlanta, GA Position Available In Fulton, Georgia

Job Description:

Application Security Engineer job opportunity is availablein Atlanta, GA.

Role overview:

An application and security consultant role in support of improvedsoftware application and systems security. Support withminimizing the possibility that coding or configuration securityvulnerabilities could have worked their way into systemenvironments that could present a point-of-compromise. The Security Consultant will maintain involvement in theorganization’s Software Development Life Cycle (SDLC) process,liaising with business and technical performers. The SecurityConsultant will review project documentation, research andreference security policy, render recommendations and guidance,approve or reject project artifacts from a security perspective,and perform other tasks in the pursuit of secure softwaredevelopment.

Responsibilities:

• Responsible for providing technical expertise on the developmentand support of all activities, processes, and tools for protectingtechnology-based information.
• Provides technical support to clients, management, securityadministrators, and network operations.
• Reviews, develops, tests, and implements security plans,products, and control techniques.
• Reviews circumstances surrounding data security incidents anddesigns corrective actions. Documents security policies andprocedures.
• Provides implementation support for risk assessment and datasecurity procedures and products.
• Leads enterprise-wide definition, establishment, and maintenanceof data, security-related infrastructure, applications, andprocesses.
• Evaluates new and proposed security systems and technologies.

Qualifications:

• Professional experience with software application security, andits associated standards and practices.
• Professional experience as a software application developer in apopular development language (e.g., Java, .NET, C/C++), performingweb-based development.
• Professional experience with securing mobile devices andapplications (i.e., understanding attacks, vulnerabilities).
• Professional experience with popular operating systems such asMicrosoft Windows and Unix/Linux.
• Professional experience with popular system databases such asOracle, MS SQL Server, MySQL.
• Professional experience with processes, tools, techniques andpractices for assuring adherence to standards associated withaccessing, altering and protecting organizational data.
• Professional experience with security policy, its interpretation,reference, and usage when delivering opinions, recommendations, andoffering guidance.
• Possessing a clear understanding of software design standards,principles, and practices.
• Possessing an understanding of and can provide guidance oninformation security risk management (ISOIEC 27001:2013,Octave-Allegro, ISOIEC 31000, FAIR).
• Possessing knowledge and application of

PCI DSS 3.0, GLBA, SOX,COBIT, ISOIEC 27001

2013, and/or

NIST CSF

standards.

• Possessing a Bachelor’s degree in Computer Science, Engineering,Information Systems, Information Security, Mathematics, or anassociated technical field.

Desired qualifications:

• Professional experience with software code analysis tools (e.g.,FindBugs, HP Fortify SCA), their use, configuration/tuning, andresults interpretation.
• Having a good understanding of risk management, securityarchitecture, common weaknesses, and vulnerability analysis.
• Having a familiarity with software testing tools (e.g., OWASPZap).
• Possessing security-centric certifications such as CSSLP, orCISSP, other associated.
• Payments industry or financial sector experience.
• Possessing a Master’s degree in Computer Science, Engineering,Information Systems, Information Security, Mathematics, or anassociated technical field.