Project Overview
Work with DDMI Application Development and Security teams to secure APIs and applications
Analyze software designs and implementations from a security perspective, identify, and resolve security issues.
Provide appropriate security analysis, defenses, and countermeasures, at each phase of the software development lifecycle to result in robust and reliable software.
Develops and maintains technical solutions for the ongoing improvement of Application security as well as automates and orchestrates repetitive or manual tasks and promoting self-service.
Primary Job Responsibilities:
Assists in maintaining technical solutions for the ongoing improvement of Application security, as well as automating and orchestrating repetitive or manual tasks and promoting self-service.
Maintains an understanding of all current and emerging technologies, open system standards, and management technologies as they relate to the support of our business needs.
Reviews knowledge base articles and ensures they are kept up-to-date and assists in providing operational training to partners and team members in accordance to industry standards.
Assists in performing safe and detailed security testing on applications, computers systems, and networks that are external or internal facing using manual tests and automated tools (such as: code scanning tools (dynamic/static), manual exploit testing scripts, manual application logic crawling).
Assist Security Engineers with tasks as needed
Assist Application Security Analysts with tasks as needed
Minimum Qualifications:
Bachelor?s degree in information technology or a related field
One year of experience in information security or application development.
An Application Security certifications is preferred. Will accept any suitable combination of education, training, or experience.
Position requires exposure to one or more programing languages such as Java, Python, PowerShell, and Xpath; familiarity with Java and Java development;
Knowledge of common version-control systems and deployment platforms such as Git, BitBucket, Artifactory, or Jenkins
The ability to run Static and Dynamic analysis tools; and the ability to create process documentation and communicate process changes across multiple functional business units.