Web Application Security Analyst will work with mentor with existing projects or take response on smaller projects
Most important someone with CISSP firewalls netscales encryption mobile security architecture for mobile applications. Must have UNIX and Linux experience.
Responsible for definition and implementation of security requirements, and standards for the security aspects of major projects. Also responsible for providing 3rd level technical support related to the whole security infrastructure. In addition, responsible for conducting real time 24×7 monitoring of hacking attempts and other malicious or suspicious activity. Conduct internal investigations related to computer security, including computer forensics.
o Apply knowledge of security principles, theories, and concepts, knowledge of business/function and development life cycle.
o Work closely with developers and evaluate business requests to determine feasibility; work with Software Engineers to define alternatives and recommend optimal solutions to meet security and regulatory requirements in the design of new/enhanced systems.
o Ensure established security policies and standards are observed by consulting with Business Owners on projects.
o Timely and accurate communication with project staff throughout the life cycle of project-based initiatives.
o Documenting and coordinating changes and enhancements of security standards and procedures, prepare and/or present documentation of business/technical presentations, provide technical support for the member(s)/business to ensure adherence to requirements, and document problem areas and coordinate resolutions.
BS Degree in Information Processing, Computer Science, Engineering or equivalent combination of experience and formal education.
o 5-8 years of Information Security practice
o Knowledge of security architecture of web based networks and environments
o Knowledge and technical security experience in Cryptography
o Requires advanced knowledge of security protocols and standards, experience with software and security architectures.
o Experience in security design and technology assessment
o Security design and implementation of web based security architecture for secure on-line transactions
o Technical experience with security practices of Intranet and Extranet
o Working knowledge of application layer firewalls, NetScaler, and Checkpoint Firewall NG.
o Working knowledge of DES encryption, Digital Certificates, SSL, VPN, IPSec, development of DMZ`s and other security tools and processes such as eTrust Access Control, ESM, and IDS/IPS.
o Working knowledge and technical security experience with Unix, Linux, Solaris, and AIX