Visa candidates are welcome to apply. Shopping has changed more in the past five years than in the past five decades, and going forward, retailing will require investing more in people and technology. With the rapid changes in retail, it is critical that technology be a strategic enabler for our company to accelerate delivery, be adaptive to market changes, and effective in rapidly delivering solutions to meet the needs of our customers. The Web Application Security Engineer works as a member of the Information Security team. Primary Responsibilities: Performs static/dynamic code testing, manual code inspection, threat modeling, design reviews and penetration testing of internal web applications and external partner applications to identify vulnerabilities and security defects. Supports the implementation and enforcement of secure design principles according to policies, standards, and patterns of Information Security. Serves as a Subject Matter Expert (SME) in web application security for enterprise projects during development phases to provide Information Security consulting and recommendations, ensuring the implementation of approved security requirements. Develops and implements manual and automated web application security testing of e-commerce web applications to enforce security standards. Works with security product vendors and service providers to evaluate security offerings, including product evaluations, proof of concept and pilot installations. Qualifications: Bachelor's degree in Computer Science, Software Engineering or related field or equivalent combination of education and experience. 5-7 years of experience in performing penetration testing, secure code review, static, dynamic and manual source code review. Experience in identifying and remediating common web application vulnerabilities such as OWASP Top 10. Experience in use of various commercial and open source penetration testing tools and methodologies and performing penetration testing of web applications and operating systems. Familiarity with APT attack and kill chains. Experience with various code repositories including GitHub and Apache Subversion (SVN). Experience with continuous integration servers such as Jenkins and ElectricCommander. SCREENING QUESTIONS Do you have experience performing penetration testing? Do you have experience identifying vulnerabilities within a web application? Are you ok working in SF or Pleasanton? Do you have examples consulting enterprise level development projects? Are you ok taking a 75 question assessment? Additional Information All your information will be kept confidential according to EEO guidelines. #J-18808-Ljbffr Direct Staffing Inc
System One is seeking candidates to be considered for a Nuclear Safeguards Engineer long-term remote contract jobopportunity. Our... ...of established safeguards approaches. The material in a MCFR plant is continuously flowing and continuously changing composition due...
...Job Description Survival Flight is accepting resumes for a full-time Helicopter Air Ambulance (HAA) Pilot position flying a Bell 407 at our base in Cushing, Oklahoma . We are certain that you will find a home amongst our family of aviation professionals, world-class...
...While experience is preferred, Mayo Clinic provides on-the-job training for this role! Learn and earn at Mayo Clinic! As a... ...responsible for obtaining quality blood samples using a variety of phlebotomy methods for all age groups. Methods may include venous, capillary...
...Description MAKE A LASTING DIFFERENCE At the YMCA, we know that health and fitness isn't just about going through the motions of a... ...a healthy lifestyle and attitude. As part of the YMCA health coaching staff, you provide support to participants on their wellness journey...
...Opportunities, and Mentor-based training And much more Position Summary: Sovah Danville is seeking a full-time Paramedic to respond to calls for emergency medical services and provide patient care as directed and/or determined necessary. Safely navigates...