• Application security Testing Analyst

    Job Location(s) US-NY-New York
    Posted Date 3 months ago(8/6/2018 10:39 PM)
    Job ID
    2018-5456
    # of Openings
    4
    Category
    Corporate - Internal IT Support
  • Overview

    Perficient

     

    At Perficient you’ll deliver mission-critical technology and business solutions to Fortune 500 companies and some of the most recognized brands on the planet. And you’ll do it with cutting-edge technologies, thanks to our close partnerships with the world’s biggest vendors. Our network of offices across North America, as well as locations in India and China, will give you the opportunity to spread your wings, too.

     

    We’re proud to be publicly recognized as a “Top Workplace” year after year. This is due, in no small part, to our entrepreneurial attitude and collaborative spirit that sets us apart and keeps our colleagues impassioned, driven, and fulfilled.

     

     

    Perficient currently has a career opportunity for an Application Security Testing Analyst in Holmdel, NJ.

     

    The Application Analyst will lead an application of the internal Perficient EBS environment.  This person will be an expert on 1-2 modules and work as part of a larger team to administer, support, implement and upgrade the internal systems as required by Perficient best practice. 

     

    Responsibilities

    Key responsibilities include:

    • Conduct automated dynamic application security testing using automated testing tools
    • Performing assessment of Penetration testing results
    • Review test results from tools
    • Ensure that automated tests are completed successfully
    • Identify and remove any false positives from automated testing tool reports
    • Triage & Disposition results
    • Provide application security consulting SME Support to developers
    • Assist developers in the understanding of security defects and risk
    • Assist in defining an acceptable solution to fix defects
    • Communicate, and document security risks, issues, and controls for security planning purposes with a line of business liaisons Help maintain Security Coding Standards
    • Stay up to date known security vulnerabilities
    • Review malicious use cases/threat models

    Knowledge & Skills Requirements

    • 3-5 years of experience in security applications and systems, specifically in the following areas:
    • Experience with application penetration testing.
    • Experience with manual penetration testing tools – they should have experience in one of the following...Burp Suite Pro or ZAP penetration
    • Experience with automated penetration tools. They should have experience in one of the following. AppScan (IBM tool), Web Inspect(Client tool)
    • Must be able to create reports explaining vulnerabilities and having demonstrated experience with communication of reports to various level of personnel within a large organization

     

    Qualifications

    Key responsibilities include:

    • Conduct automated dynamic application security testing using automated testing tools
    • Performing assessment of Penetration testing results
    • Review test results from tools
    • Ensure that automated tests are completed successfully
    • Identify and remove any false positives from automated testing tool reports
    • Triage & Disposition results
    • Provide application security consulting SME Support to developers
    • Assist developers in the understanding of security defects and risk
    • Assist in defining an acceptable solution to fix defects
    • Communicate, and document security risks, issues, and controls for security planning purposes with a line of business liaisons Help maintain Security Coding Standards
    • Stay up to date known security vulnerabilities
    • Review malicious use cases/threat models

    Knowledge & Skills Requirements

    • 3-5 years of experience in security applications and systems, specifically in the following areas:
    • Experience with application penetration testing.
    • Experience with manual penetration testing tools – they should have experience in one of the following...Burp Suite Pro or ZAP penetration
    • Experience with automated penetration tools. They should have experience in one of the following. AppScan (IBM tool), Web Inspect(Client tool)
    • Must be able to create reports explaining vulnerabilities and having demonstrated experience with communication of reports to various level of personnel within a large organization

     

     

     

    Perficient full-time employees receive complete and competitive benefits. We offer a collaborative work environment, competitive compensation, generous work/life opportunities and an outstanding benefits package that includes paid time off plus holidays. In addition, all colleagues are eligible for a number of rewards and recognition programs including billable bonus opportunities. Encouraging a healthy work/life balance and providing our colleagues great benefits are just part of what makes Perficient a great place to work. 

     

    More About Perficient

     

    Perficient is the leading digital transformation consulting firm serving Global 2000 and enterprise customers throughout North America. With unparalleled information technology, management consulting and creative capabilities, Perficient and its Perficient Digital agency deliver vision, execution and value with outstanding digital experience, business optimization and industry solutions.

     

    Our work enables clients to improve productivity and competitiveness; grow and strengthen relationships with customers, suppliers and partners; and reduce costs.  Perficient's professionals serve clients from a network of offices across North America and offshore locations in India and China. Traded on the Nasdaq Global Select Market, Perficient is a member of the Russell 2000 index and the S&P SmallCap 600 index.

     

    Perficient is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national, origin, disability status, protected veteran status, or any other characteristic protected by law.

     

    Disclaimer:  The above statements are not intended to be a complete statement of job content, rather to act as a guide to the essential functions performed by the employee assigned to this classification.  Management retains the discretion to add or change the duties of the position at any time. 

     

    IMPORTANT INFORMATION: Applicants should ensure that their e-mail settings will receive e-mail from the iCIMS system otherwise, you could miss critical communications related to your application.

    #LI-MG1

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed