• 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

5

May

Static Code Review And Software Composition Analysis Lead

Brace168 - North Sydney, NSW

IT
Source: uWorkin

JOB DESCRIPTION

Responsibilities:

  • Perform secure software code reviews, software composition analysis of apps (Web/Mobile/APIs), these assessments make use of automated and manual scanning tools such as Fortify, Checkmarx, Whitesource, experience in using any of these or similar tools
  • Execution of static application security testing, analysis of libraries, secure containers, Infrastructure as code, orchestration, vulnerability management process and tools
  • Utilize knowledge and understanding of application architecture, design, development and secure coding principles and emerging standards to identify findings and clearly communicate risks and possible remediation
  • Continuously improve the security aspects of operating processes, research and keep up to date with application security threats, techniques, tools, trends and threat mitigation strategies; responsible for understanding security policies and industry best practices
  • Provide guidance to developers, recommended controls and countermeasures, present to technical and non-technical audience about security vulnerabilities and interface with stakeholders
  • Establish and report on metrics to gauge software security effectiveness, progress and key risk areas identified through audits, maintain awareness of the current security threat landscape


Qualifications:

  • Minimum of five years of recent experience in the field of Cyber Security and software development with a strong knowledge of software code reviews
  • Bachelor's degree from an accredited college or university is preferred; certifications in GWEB/GWAPT/CISSP/OSCP preferred
  • Understanding of security principles, IT security controls and related technologies and products; knowledge of OWASP, SANS or other security-related frameworks and penetration testing methodologies
  • Prior experience in Programming & Scripting such as .NET, Groovy, Python and PowerShell is preferred; current knowledge of application security best practices, common exploits and threat landscape
  • Strong verbal/written communication, with ability to effectively interact with individuals at all levels of responsibility and authority; must be able to prioritize, delegate and foster the development of high-performance teams to lead/support an environment driven by customer service and teamwork
  • Solid trouble-shooting and organizational skills and ability to work on multiple projects simultaneously; ability to participate in resource planning processes based on defined organizational plans


Location :

Role is Sydney and North Sydney based. You must be able to work from these locations and have permanent residency.

;