Application Security Architect - PDS: Pairing Exceptional Talent With Exceptional Companies

Job Code: #12237
Title: Application Security Architect
Job Location: Scottsdale, Arizona

Apply to this job

Job Description:

Application Security Architect

 Our client has an immediate opening for an Application Security Architect in the Scottsdale, AZ area.
 

Application Security Architect Job Description:

 This position consults with IT, Project Management, Product Management, Software Development and other peers on proper security architecture and software development processes to ensure the applications developed and systems implemented are in line with security best practices and policies and standards.

 

Essential Functions

  • Identifies, measures, controls and minimizes security risks to information systems across a broad range of disciplines including application, network and host security.
  • Evaluates the current methods in use to access and process data via customer facing applications.
  • Develops repeatable architectures working with internal and external partners to ensure that systems are placed within the relevant security zones based on the data they house and their purpose
  • Serves as the point of contact for all security issues in assigned areas
  • Works with architecture teams to ensure that all newly developed and legacy applications and infrastructure implementations are in line with security policy and are compliance to the required frameworks (ISO, PCI DSS 2.0, OWASP, NIST 800-53, etc.)
  • Advises and approves of changes and architectures for assigned areas from a security perspective.
  • Evaluates all product business cases including functional and detailed design specs to ensure security standards are met.
  • Assists with appropriate team in security incident resolution as assigned.
  • Contributes to the development of ffsecurity policy and procedures.
  • Develops architectural reference material to ensure that security practices are being implemented in a repeatable fashion every time a new project is implemented
  • Supports the business need for forensic investigations for any breach, infection, or investigation into employee concerns.
  • Manage risks and security issues that could impact the confidentiality, integrity and/or availability of the business (both internally and externally) by assisting in documentation, tracking and creating solutions for mitigation.
  • Work with internal and external penetration testing organizations to coordinate application and network based penetration
  • Works with Software Development to perform static code analysis on all custom developed code.
  • Interacts with customer banks to gather yearly testing and security requirements, review penetration testing findings, mitigating controls and/or projects to rectify security vulnerabilities.
  • Complies with all security policies and procedures to ensure the highest level of system and data confidentiality, integrity and availability is maintained.

 

 

 

Minimum Qualifications

  • Education and experience typically obtained through completion of a Bachelor’s degree in Computer Science, Engineering, Math or Physical Science
  • Minimum eight years of general IT experience, with a minimum five years of IT security experience and three years of Security Architecture or Consulting experience
  • Working knowledge of SQL and Oracle databases, Windows and Linux operating systems, and Cisco and Juniper network solutions.
  • Ability to work independently and within a team environment.
  • Effective interpersonal skills, with ability to present to peers, coworkers and customers
  • Knowledge of operating system, application, network, and database security architectures.
  • Experience in analyzing technical issues and making recommendations for corrective action.
  • Demonstrate advanced understanding in the field of Information Security in terms of both concepts and technology.
  • Approved background and drug screen is required. 

 

Additional Minimum Application Architect Qualifications

Application development background

 

CEH Certification or equivalent

 

 

 

 

Preferred Qualifications

  • CISSP, MCSE, SCSA, CCNA or CISA certification
  • Unix administration or hobbyist
  • Additional related education and/or experience preferred

 

Additional Minimum Application Architect Qualifications

Familiarity with HP Fortify

 

Familiarity with application penetration testing tools:

  • Proxies (Burp Suite Pro, Zed Attack Proxy)
  • Scanners (Netsparker, AppScan, WebInspect)
  • XML Tools (SOAP UI)

Familiarity with BSIMM framework

 

 

 

For immediate consideration please send your resume to: phxjobs@pdsinc.com             

 

If you’re interested in and a strong fit for the above opportunity please provide your answers to the following questions:

1) Are you local (AZ)?

2) Are you currently working?

3) What is your availability to interview? How soon could you start if you were offered this position?

4) Are you a US Citizen? What is your citizenship status?

5) Do you have any upcoming vacations?

6) What are your annual salary requirements? What are your hourly wage requirements?

7) Are you seeking a contract, contract to hire, direct hire or are you open to all?

8) Phone number to reach you quickly for interview scheduling?

9) Are you currently interviewing? Do you have any other offers?

 

US citizens and those authorized to work in the US are encouraged to apply. We are unable to sponsor H1b candidates at this time. You must pass a background check and drug screen.

 

We look forward to working with you!

Thank you!

Your PDS Team
Productive Data Solutions, Inc. 
Web: http://www.pdsinc.com

 

Apply to this job

Comments are closed.