Net2Source (N2S)Net2Source Inc. is an award-winning total workforce solutions company recognized by Staffing Industry Analysts for our accelerated growth of 300% in the last 3 years with over 5500+ employees globally, with over 30+ locations in the US and global operations in 32 countries.
We believe in providing staffing solutions to address the current talent gap - Right Talent - Right Time - Right Place - Right Price and acting as a Career Coach to our consultants.
Title- Software and Application Security Engineer
6 month Contract to Hire
Rate- $63/Hr. on W2
Lake Mary, Florida - Fully Remote
Set up and operate software security testing techniques in conformity with the technical reference architecture and the companies security policies and guidelinesConduct in-depth analysis of open-source threats and vulnerabilities (including zero-day), collaborate with engineering teams to evaluate and assess the impact of vulnerabilities on current code, including libraries, frameworks, and dependencies.
Identify and prioritize high-risk open-source components within our codebase, considering factors such as exploitability, severity, and exposure.
Develop and implement remediation and risk mitigation plans to address identified vulnerabilities
Coaching and hands on experience for code refactoring, patching, and dependency updates.
Identify and recommend engineering design changes to help reduce vulnerabilities.
Champion and evangelize secure coding practices with the engineering community.
Develop and lead security reviews and drive innovative security remediation efforts.
Provide technical designs for innovative software solutions to address security risks.
Coaching and assisting in administration and configuring of security tools, documenting secure configurations. Serve as an Application security consultant and advisor for software engineering teams in assisting with secure coding best practices, threat detection, Software security vulnerabilities, security reviews, remediation recommendations throughout the delivery lifecycle.
Building relationships and developing partnerships with engineering/development, security operations, enterprise and application architecture teams to mature Security Coding practices for the company owned applications and platforms.
Stay informed about emerging threats and vulnerabilities in the open-source community, understanding impact of attacks, controls and mitigation measures in the application security space.
Communicate project related security risks, control and remediation measures accurately and in a timely manner to stakeholders and impacted teams.
Integrate and adhere with the defined development and delivery process/ Change Management, SLA Compliance, productivity and other enterprise goals. Serve as a thought leader, change agent and influencer within the enterprise providing feedback to leadership, engineering, architecture and security operation team members.
Strong spoken and written communication skills
Analytical and Problem-solving mindset
Developer background with experience in all types of application security testing specific to Software composition Analysis. Good understanding of web application security, static security testing, cloud security, container security - tools, scan, triage, risk evaluation and remediation.
Thorough understanding and experience in identifying and mitigating application vulnerabilities publicized by OWASP, WASC, CWE, CVE etc.
Strong knowledge on industry best practices, code review and analysis
Proficient with source code security review and remediation.
Experience working with application development teams, architecture teams, security teams, and infrastructure teams.
Has advised and guided teams with secure coding practices and design best practices for security risk recommendation and remediation.
Thorough familiarity with different industry standard tools for code repository management, code quality, DevOps, containers, and AWS cloud services.
Hands on experience with tools such as Sonatype, Qualys, SonarQube, and AWS Inspector.
Proficient with the following languages:
JavaScript, Java, and Python
Working knowledge of GitHub, AWS ECS/EKS, AWS Lambda, Docker, Terraform.
Essential Soft SkillsInterested in learning and applying new technologies and concepts while staying up to date with technology tools and trends in the industry.
Possess a positive, can-do attitude and enjoys making a difference in the business through technical contributions
Ability to think creatively, stimulate new ideas and challenge existing thinking.
Excellent communication skills and ability to articulate technology topics to both technical and non-technical audiences
Mortgage Industry Experience would be a plus
Position requires a bachelor's degree in computer science or computer engineering with AWS certifications and security certifications and/or equivalent experience.
High-Level Role Summary
Core Purpose:Act as a bridge between development and security teams, ensuring secure coding practices and improving the organization's application and cloud security posture.
Hands-on vulnerability analysis, remediation strategies, and security architecture guidance for Java/JavaScript applications and cloud environments (AWS).
Why work with us - At Net2Source, we believe everyone has an opportunity to lead. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take necessary steps to make your mark.
We help clients with new skilling, talent strategy, leadership development, employee experience, transformational change management, and beyond.
Net2Source is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion, or sexual orientation.
Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status, or any other basis as protected by federal, state, or local law.
America's Most Honored Businesses (Top 10%)
Awarded by USPAAC for Fastest Growing Business in the US
12th Fastest-Growing Staffing Company in the USA by Staffing Industry Analysts in the US (2020, 2019, 2020)
Fastest 50 by NJ Biz (2020, 2019, 2020)INC 5000 Fastest growing for 8 consecutive years in a row (only 1.26% of companies make it to this list).
Top 100 by Dallas Business Journal (2020 and 2019)
Proven Supplier of the Year by Workforce Logiq (2020 and 2019)
2019 Spirit of Alliance Award by Agile1
2018 Best of the Best Platinum Award by Agile1
2018 TechServe Alliance Excellence Awards Winner
2017 Best of the Best Gold Award by Agile1(Act1 Group)
Regards,
Davidson Ave, Suite 704, Somerset, NJ, 08873
¿Te interesa este puesto?