EIS Application Security Specialist

The EIS Application Security specialist will be responsible for aspects of client US Application Security program, including coordinating with cross-functional and global groups that client applications are developed securely.
 

• Support activities relating to the client US Application Security program
• Support the application development process group and the SDLC processes related to identifying security vulnerabilities within the application development process
• Support the standard client US application security assessment tools
• Refresh the Security Assessment plan for new Program Development.
• Conduct application security assessments using standard client US application security tools
• Collect and report status on application security assessments including milestones, deliverables, timing, tasks, risk areas, and status
• Categorize and recommend assessment strategies for existing and new application development
• Reinforce and communicate the Security Assessment and Risk Acceptance requirements for current and future projects
• Operationally evaluate security exceptions, address escalations, and identify trends and risk.
• Coach development and supplier teams on application security

 
Requirements
 

• Familiarity with software vulnerability and weakness measurement standards such as CWE ,CVE, and CVSS 2.0
• Experience with application scanning Tools like APPSCAN or any other related tool
• Knowledge of the OWASP Top 10 and mitigation strategies for each
• Background experience with application development - compiled code, mobile applications, website design, web services
• Experience with application development lifecycle
• Project management experience to help coordinate remediation efforts
• Ability to communicate to all level of management in written and verbal form
• Knowledge of programming, scripting, and query languages such as  Java, SQL, HTML, Javascript
• Familiarity with application vulnerability scanners
• Ability to promote application security awareness via training sessions and documentation
• Certifications: CISSP, CEH, OSCP, GPEN a plus

 
What V2Soft Offer:
 
V2Soft’s compensation program offers market-competitive base pay with many benefits.
 
V2Soft offers a variety of benefits to protect your health and well-being, provide financial security and balance your work/life needs including: 
 

• 401K Retirement Savings Plan with employer match
• Health benefits including Medical, Dental and Vision benefits
• Flexible spending plan
• Long-term and Short-term disability insurance
• Life and AD&D insurance
• Paid Holidays and Vacations

 
V2Soft is an Equal Opportunity Employer (EOE).
 
For further information please contact Anand Srinivasan (248-904-1718)