Beschreibung
For our banking client in Zürich we are currently looking for a Software Security Analyst:
START: ASAP
DURATION: 12 weeks
LOCATION: Zürich
Essential skills:
- Application security and analysis of software security vulnerabilities
- Source code review and auditing
- Use of automated scanning tools (HP Fortify)
- Good knowledge of Java or .NET programming languages
Additional skills
- Know-how in C, C++, Javascript, SQL (Oracle or Sybase)
- Use of other automated scanning tools (IBM AppScan, Qualys, etc)
- Penetration testing
Tasks:
- The Software Security Analyst will support the Application Security Framework (ASF) demand for the static source code analysis control (VM15), based on the HP Fortify scanning tool
O support the ASF operating model and processes
O support on-boarding of in-scope applications of ASF
O provide support on technical issues with the Fortify tool
O validate the scan results with the development teams
O perform security reviews of applications at development and QA stage of SDLC
O help identifying and removing "False Positive" security vulnerabilities
O provide advice for development teams remediating identified security vulnerabilities
Responsibilities:
- liaise with application owners and development teams
- escalate with risk remediation managers when required
- report progress to the VM15 Service Manager
Michael Bailey International is acting as an Employment Business in relation to this vacancy.