Security Engineer – Checkmarx

Required Skill:

Security Engineering– These folks will analyze existing security vulnerabilities as identified through Checkmarx to identify the most common reasons for vulnerabilities.  Once identified, these engineers will create common practices to remediate existing vulnerabilities and ensure we aren’t creating new vulnerabilities.  Skills should be a software engineering background with a focus on security application development.                            

Job Description:

• Utilize source code scan tool ""Checkmarx"" to remediate application vulnerabilities and assist application development teams to apply the best practice for application security and catch potential vulnerabilities at early stage

• Experience developing secure coding practices with C#, Asp.Net (MVC and WebForms), HTML/CSS, Sql Server

• Strong knowledge and experience in securing an application’s integration with relational database management systems such as MS SQL

• Knowledge of security in both Linux and Windows environments as it pertains to Web application hosting, middleware (IIS, Apache, Tomcat, PHP, ColdFusion, Ajax), and databases (Oracle, MySQL, MS SQL Servers)

• Proven ability to ensure applications are secure throughout the software lifecycle

• 5 or more years creating apps and libraries that remediate security vulnerabilities, such as Cross-site Scripting, SQL injection, and Client DOM injection.

• Enterprise software development experience particularly as it pertains to using SCMs, CI/CD tools, defect tracking solutions, and best practices for enterprise software development

• Able to compose clear documentation and user guides.

• Must be able to coach and provide coding best-practice guidance to external App Dev teams.

• Must be able to work US business hours.