Location: Chester, Virginia, United States,23831
Duration: Long Term
- .Net development, including the use of TFS/Share point for code/project tracking -Required (8 yrs)
- Securing applications using best practice, testing/coverage of things like OWASP top 20, use of x.509 certificates, input validation/sanitization/etc – Required (5 yrs)
- Penetration/security testing of .net apps – Required (5 yrs)
- Use of HP fortify for scanning/remediating applications -Required (3 yrs)
- Security focused .net developer to review/modify/enhance agency applications using best practice design principles to defend against attack vectors such as the OWASP top 20/etc.
- This is a .net development position with a specific focus on enhancing/modifying/extending the security posture of various agency applications.
- This position will require 8+ years of very solid .net development experience covering a variety of technologies including, asp.net, c#, WCF services, X509 certificate use for two factor authentication, web services, framework 2.0 through 4.5, SQL/Oracle development experience (stored procedures, tables, views, etc), experience securing .net applications using best practice methodologies (whitelisting, cross-site scripting defense, session management, input validation/sanitizing, etc).
- A specific focus on security to include penetration testing of apps and using the code scanning tool HP Fortify.
One or more (more than one preferred) of the following certifications:
- C.A.S.E- certified application security engineer,
- CEH-certified ethical hacker, CASS - Certified application security specialist,
- CPT-certified penetration tester, GSSP-Secure software programmer (.net),
- GWEB-Web application defender.
Thanks,
Jeeva.v
630 544 6609
No comments:
Post a Comment