Jobs via Dice
Application Security Consultant
6 – 12 month contract (later hire). Location: Newark, NJ (Hybrid model – 1–2 days onsite per week).
Job Description
The Enterprise Information Security Consultant will apply business process analysis and technical knowledge to develop enterprise security architectural deliverables that identify and describe relationships among functions, data, applications, and technology.
The consultant will perform assignments and lead project teams composed of Business Analysts, Systems Engineers and Research Specialists, analyzing systems and technology integration requirements across multiple applications and organizations.
The consultant will communicate and work closely with process and system owners, IT management, peers, and technical staff to ensure that security architecture and system designs meet business process requirements.
The consultant will set the strategic direction, develop advanced enterprise‑wide security ideas, determine security technology/standards and guide their development into a final product.
The position reports to the Director of Technology Architecture and will provide technical guidance and render decisions regarding security technology designs and engineering.
Basic Qualifications
Bachelor’s degree in Information Technology or related discipline, or advanced degree or professional certification in Management Information Systems.
Professional experience in Security Architecture, including security with applications, infrastructure, external internet security, or access and identity management; knowledge of information privacy and security laws.
Hands‑on experience reviewing code designs from a security standpoint.
Experience with internal and external application security assessment.
Experience with the Secure Development Lifecycle.
Experience defending against OWASP Top Ten attack types.
Knowledge of SSL/TLS, its capabilities and limitations.
Experience with C, Python, Ruby, C++ and other relevant languages.
Experience with vulnerability assessments, penetration testing, and fixing vulnerabilities.
Experience with data encryption solutions.
Experience with ITCAM/SOA.
Additional Qualifications / Knowledge
Prefer 5 + years of management experience.
Experience working in a controlled regulatory environment.
Strong understanding of application security principles.
Ability to articulate AAA (AuthN, AuthZ, Audit).
Strong understanding of TOGAF and its relevance.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function Information Technology
Industries Software Development
#J-18808-Ljbffr
Job Description
The Enterprise Information Security Consultant will apply business process analysis and technical knowledge to develop enterprise security architectural deliverables that identify and describe relationships among functions, data, applications, and technology.
The consultant will perform assignments and lead project teams composed of Business Analysts, Systems Engineers and Research Specialists, analyzing systems and technology integration requirements across multiple applications and organizations.
The consultant will communicate and work closely with process and system owners, IT management, peers, and technical staff to ensure that security architecture and system designs meet business process requirements.
The consultant will set the strategic direction, develop advanced enterprise‑wide security ideas, determine security technology/standards and guide their development into a final product.
The position reports to the Director of Technology Architecture and will provide technical guidance and render decisions regarding security technology designs and engineering.
Basic Qualifications
Bachelor’s degree in Information Technology or related discipline, or advanced degree or professional certification in Management Information Systems.
Professional experience in Security Architecture, including security with applications, infrastructure, external internet security, or access and identity management; knowledge of information privacy and security laws.
Hands‑on experience reviewing code designs from a security standpoint.
Experience with internal and external application security assessment.
Experience with the Secure Development Lifecycle.
Experience defending against OWASP Top Ten attack types.
Knowledge of SSL/TLS, its capabilities and limitations.
Experience with C, Python, Ruby, C++ and other relevant languages.
Experience with vulnerability assessments, penetration testing, and fixing vulnerabilities.
Experience with data encryption solutions.
Experience with ITCAM/SOA.
Additional Qualifications / Knowledge
Prefer 5 + years of management experience.
Experience working in a controlled regulatory environment.
Strong understanding of application security principles.
Ability to articulate AAA (AuthN, AuthZ, Audit).
Strong understanding of TOGAF and its relevance.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function Information Technology
Industries Software Development
#J-18808-Ljbffr