Application Security Contractor
Company Name:
Medical Science & Computing, Inc.
Medical Science & Computing, Inc. (MSC) is a small business dedicated to providing scientific and technical services to the Federal Government. We have a long history of supporting the National Institutes of Health (NIH). MSC offers a dynamic work environment with excellent benefits and career growth opportunities. We are currently searching for an Application Security Contractor supporting the National Institutes of Health. This is a full-time position located at the NIH Campus in Bethesda, MD.
Duties Systematically address web application security issues and develop secure coding practices for multiple development teams Implement and maintain mission critical Web applications with high levels of external visibility and high traffic volume Integration of application authentication, encryption, authorization, and access control Provide mitigation strategies for Web applications from infrastructure, architecture, and secure coding perspectives Utilize application security scanning tools such as IBM AppScan to interpret reports and validate identified vulnerabilities and associated risks Proactively work with team members to address security and compliance issues Collaborate with development teams to prioritize and remediate vulnerabilities throughout the application lifecycle Position Requirements A Bachelor's degree in Computer Science OR related engineering field with training in software security Strong software engineering background with extensive experience working in complex enterprise environments implementing software development lifecycles Extensive experience in addressing web application security issues, such as those outlined in OWASP Top 10 Strong knowledge of application security throughout the software lifecycle Experience developing secure coding practices with Java, ColdFusion, and PHP Strong knowledge and experience in securing an application's integration with relational database management systems such as Oracle Proven ability to ensure applications are secure throughout the software lifecycle Knowledge of security in both Linux and Windows environments as it pertains to Web application hosting, middleware (Apache, Tomcat, PHP, ColdFusion, Ajax), and databases (Oracle, MySQL, MS SQL Servers) Demonstrated experience implementing application firewall rules (such as F5 ASM, iRules, and/or Apache ModSecurity) as compensating controls to protect Web applications Software Security Certifications, such as Certified Secure Software Lifecycle Professional (CSSLP) is a big plus Excellent communication skills
EEO/AA - M/F/D/V
Estimated Salary: $20 to $28 per hour based on qualifications.
Medical Science & Computing, Inc.
Medical Science & Computing, Inc. (MSC) is a small business dedicated to providing scientific and technical services to the Federal Government. We have a long history of supporting the National Institutes of Health (NIH). MSC offers a dynamic work environment with excellent benefits and career growth opportunities. We are currently searching for an Application Security Contractor supporting the National Institutes of Health. This is a full-time position located at the NIH Campus in Bethesda, MD.
Duties Systematically address web application security issues and develop secure coding practices for multiple development teams Implement and maintain mission critical Web applications with high levels of external visibility and high traffic volume Integration of application authentication, encryption, authorization, and access control Provide mitigation strategies for Web applications from infrastructure, architecture, and secure coding perspectives Utilize application security scanning tools such as IBM AppScan to interpret reports and validate identified vulnerabilities and associated risks Proactively work with team members to address security and compliance issues Collaborate with development teams to prioritize and remediate vulnerabilities throughout the application lifecycle Position Requirements A Bachelor's degree in Computer Science OR related engineering field with training in software security Strong software engineering background with extensive experience working in complex enterprise environments implementing software development lifecycles Extensive experience in addressing web application security issues, such as those outlined in OWASP Top 10 Strong knowledge of application security throughout the software lifecycle Experience developing secure coding practices with Java, ColdFusion, and PHP Strong knowledge and experience in securing an application's integration with relational database management systems such as Oracle Proven ability to ensure applications are secure throughout the software lifecycle Knowledge of security in both Linux and Windows environments as it pertains to Web application hosting, middleware (Apache, Tomcat, PHP, ColdFusion, Ajax), and databases (Oracle, MySQL, MS SQL Servers) Demonstrated experience implementing application firewall rules (such as F5 ASM, iRules, and/or Apache ModSecurity) as compensating controls to protect Web applications Software Security Certifications, such as Certified Secure Software Lifecycle Professional (CSSLP) is a big plus Excellent communication skills
EEO/AA - M/F/D/V
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
