Previous Job
Previous
Application Security Engineer
Ref No.: 18-29142
Location: DC Metro, District of Columbia
Position Type:Contract
Start Date: 04/26/2018
 Personnel Requirements:
Experience with secure coding principles; code signing and secure boot
Experience with penetration testing and ethical hacking
Practical implementation and architectural experience in encryption techniques, including data at rest and in transit
Proficiency in creating dataflow diagrams, network diagrams, and other application related design documents
Proven experience in security code review and code analysis
Must be fully proficient in, and able to instruct others, on the OWASP Top 10
Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML)
Knowledge of CI/CD and automation tools (Chef, Git, Jenkins)
Experience in securing cloud infrastructure such as AWS, Azure and alike (i.e., inspection, logging, WAF, VM)
Experience in deployment of cloud controls for infrastructure, platform, and applications (IaaS/SaaS/PaaS), specifically within AWS, Azure and GCP
Minimum of 5 years of experience with detection technologies (e.g. Snort, Suricata, Bro, netsniff)
Minimum of 4 years of experience with scripting languages (e.g. Ruby, Python, Perl, and Powershell)
Minimum of 2 years of experience with cloud technologies (e.g. AWS, Azure, OpenStack)
Minimum of 1 year of experience with secure development life-cycles
Minimum of 1 year of experience with identity management and authentication (Oracle OIM, AD)
5-7 years of experience administering Unix-like operating systems (e.g. Linux, OSX, BSD)
5-7 years' experience administering orchestration tools such as Puppet, SALTStack, Chef, or Ansible