•Defining security policies and procedures•Performing application vulnerability and security assessments and penetration testing and propose remediation approaches•Performing assessments of SDLC processes•communicate and report application vulnerability and security assessments to the upper management•Provide security guidance and drive infrastructure decisions in collaboration with other technical and management team, ensuring Security principles are being upheld and no violations of Security Policy is taking place•Work independently with developers, product owners, and other colleagues to ensure secure design, development, and implementation of our applications•Identifying current and emerging technology issues including security trends, vulnerabilities, and threats•Hardening DBMSs•Hardening web servers
Teamwork skills
Excellent written and verbal communication skills
High skill in solving problems and providing optimal solutions
experienced with MS Windows and Linux
Familiar with at least one programming language
Strong understanding of information security concepts, standards and practices
Strong knowledge of web application security issues
Knowledge of SQL Server hardening
Knowledge of Oracle hardening
Knowledge of IIS hardening
Knowledge of Apache Tomcat hardening
Familiar with dynamic and static analysis techniques, fuzzing, and secure coding practices
Experience working with common security tools such as BurpSuite and Kali
Strong organizational skill and be able to attend to and prioritize projects
Excellent analytical and time management skills
Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in a high demand environment
Ability to work under pressure and stressful scenarios
Discipline and professional ethics