Apps Security Analyst II SAST
Newark, NJ

Job Description

Description:

The Application Security Analyst will partner with developers and business owners from applicable technical teams to conduct application security assessments. The individual will work closely with technical teams to analyze potential impacts and pitfalls associated with threats as well as vulnerabilities; based on software coding patterns. Candidate will advise various technical teams on options to mitigate accordingly. This position reports to the Director of Enterprise Security Architecture.

Responsiblities:

* Review code for security vulnerabilities and practices dangerous to security and privacy.
* Write custom rules on automated source code scanning tools
* Design cloud and virtualization based technologies, e.g. Amazon Web Services (AWS), VMWare and Docker
* Build security into infrastructure and architecture designs and guide the implementation with the operations team
* Script (Python, Perl, Ruby) and build automation tools on an ad-hoc basis
* Create and deliver knowledge sharing presentations and documentation to developers and operations teams
* Learn on the job and explore new technologies with little supervision
* Write reports including recommendations, root cause analysis, security summary analysis, and project roadmaps

Knowledge of:

* Common vulnerabilities in the OWASP top 10 list
* Protocols/technologies such as SOA, HTTP, SSL, LDAP, JDBC, Servlet/JSP, SQL, HTML, XML
* Java Application and Java Application Server administration/tuning
* Amazon Web Services (AWS) and/or VMware vCloud and/or Docker

Skills and Abilities:

* Ability to program in one of the following programming languages: Java, C#, C, C++
* Ability to understand software design algorithms
* Ability to write scripts in languages such as Python, BASH, or PowerShell for automation
* Ability to read and debug code
* Must have excellent verbal, written and interpersonal communication skills.

Education/Experience:

* Requires a Bachelors degree from an accredited college or university, preferably in Computer Science, Information Systems or related field.
* Requires a minimum of 4 years of technical work experience reading code in the following languages: Java, JavaScript, Objective-C, C++, C#, Python, Perl, etc and preferably developing web applications (or a master's degree and 2 years of technical work experience reading code and preferably developing web applications)

Additional licensing, certifications, registrations:

SANS Certifications

Programming Certifications

Blue Cross Blue Shield of New Jersey is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or status as an individual with a disability and any other protected class as required by federal, state or local law.

Location: Newark, NJ

Activation Date: Tuesday, July 2, 2019

Expiration Date: Wednesday, January 1, 2020

Apply Here