IT Security Application Consultant

IT Security Application Consultant

 

The Application Security Specialist must be savvy in application security and want to work in the area of application security consulting, advisory and technical implementation. You are expected to specialize in Cryptography, PKI, IDM and Security standards.

 

  • Work with solution team in providing the application security solution during sales cycles
  • Provide the advisory to project team on application security best practice and standards
  • Work with the security architect team on shaping and implementing best-practice guidelines for securing java application against the following security standards:
  • Authentication : SAML, Kerberos, and ad-hoc standard smartcard PKI technologies
  • Authorization : SAML, LDAP repositories, ad-hoc usage of ADAM, proprietary databases
  • Code security : Protecting against OWASP recognized security risks, static source code analysis
  • Networking Protocols : Web Services (both WS.* and RESTful), MQ, SFTP
  • Implement the application security and support the security testing

 

 

Requirements

 

Degree in computer related discipline, with least 3 years Java/J2ee working experience
At least 3 year experience in the any of the following areas of:

 

  • Implementation and/or Security experience in application development projects
  • Security and/or Identity involvement as part of development projects
  • Identity Management and Access Management (SUN/Oracle/CA/IBM) solutions and Authentication technologies integration using a combination of TCACS, radius, PDAP, 2-factors, PAP, CHAP, ARA, S’Key and password file

 

Familiar with system and data security concepts, especially in the areas of:

 

  • Unix, WIN2K, NT and web server security such as OS tightening, SSO and virus scanning
  • Vulnerability assessment, penetration testing and risk assessment using various scanning and penetration testing tools
  • Cryptographic systems such as SSL, SET, IKE and PKI

 

Strong interest in Security Domain
 

Position will be on 1-year contract.