Beschreibung
Bosshard & Partner is looking with Mandate 3453for a Software Security Analyst (f/m)
Project environment
A global Swiss Bank is looking for a Software Security Analyst who will support the Application Security Framework (ASF) demand for the static source code analysis control based on the HP Fortify scanning tool.
Tasks
• Support the ASF operating model and processes.
• Support on-boarding of in-scope applications of ASF.
• Provide support on technical issues with the Fortify tool.
• Validate the scan results with the development teams.
• Perform security reviews of applications at development and QA stage of SDLC.
• Help identifying and removing "False Positive" security vulnerabilities.
• Provide advice for development teams remediating identified security vulnerabilities.
• Liaise with application owners and development teams.
• Escalate with risk remediation managers when required.
Requirements
• Experience in Application security and analysis of software security vulnerabilities.
• Source code review and auditing.
• Use of automated scanning tools (HP Fortify).
• Good knowledge of Java or .NET programming languages.
• Know-how in C, C++, Javascript, SQL (Oracle or Sybase) is a plus.
• Experience with using other automated scanning tools (IBM AppScan, Qualys, etc) is a plus.
• Experience with Penetration Testing is a plus.
Soft skills
• Fluent in English and German.
• Good team-player.
Workload: 100%
Start Date: asap
Duration: 3 months
Workplace: Zurich
Did we gain your interest? Please do not hesitate to contact Mr Michael Wirz at or