Web Application Security Specialist
Web Application Security Specialist
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Web Application Security Specialist: Become the Newest Member of the VF Family
As a member of the Application Security team you will be a key member of the team looking across the VF Global enterprise looking for threats and vulnerabilities that would potentially or unnecessarily place the company at risk.
Working with the different teams within VF you will oversee report findings to the key stakeholders evaluate and prioritize key vulnerabilities and intersect with the risk functional team within cyber and information security. Responsibilities will include oversight of remediation efforts within VF.
How You Will Make a Difference:
- Lead and run the Dynamic Application Security Testing(DAST) program
- Serve as a subject matter expert for application development and infrastructure teams
- Partner with application development teams for secure development process adoption and continuous security posture improvement
- Perform endtoend application security reviews to ensure critical information is appropriately protected
- Assist with Bug Bounty and Vulnerability Disclosure program as needed
- Determine and define project scope objectives and deliverable for largescale application security projects
- Identify metrics and Key Performance Indicators (KPIs) for application security program
- Analyze organizations cyber defense policies/configurations and evaluate weaknesses and vulnerabilities
- Support authorized penetration testing on enterprise network assets and web applications as needed
- Support purple team exercises and breach and attack simulations as needed
- Participate in the creation of effective and efficient processes to drive successful reduction of risk within VF
- Research and advocate for new security solutions and technologies
- Ensure the highest levels of security practices are maintained by VF through projects implementations
- Establish communications with associates related to threats vulnerabilities processes and security risks across a global landscape
- Advocate and evangelize the importance of Threat and Vulnerability management within VF and socialize through internal channels
Years of Related Professional Experience: 35 years
Position Requirements:
- Have experience with IT Security Risk Management or IT Auditing
- Expert knowledge of vulnerabilities as presented on the OWASP top 10
- Extensive experience with agile delivery practices
- Extensive experience integrating security into DevOps practices
- Understanding of networking protocols (IP DNS HTTP)
- Extensive experience conducting source code review
- Experience using static application security testing tools such as Fortify Checkmarx Veracode etc.
- Extensive experience dynamic application security testing with tools such as AppScan Invicti Qualys WAS BurpSuite and OWASP ZAP etc.
- Experience in Web Application and/or API penetration testing
- Familiarity with common enterprise architectures
- Experience auditing and configuring Akamai security products (WAF BMP etc.
- Excellent organizational and communication skills
- Demonstrated ability to work independently and with others
- Follows all defined IT standards and processes (i.e. IT Governance SM&G Architecture etc. and provides input for improvements to the appropriate process owners as needed
- Maintains a proper balance between business and operational risk
- Follows the defined project management standards and processes
Educational Preferences:
- A bachelors or masters degree in computer science information systems or other related field; or equivalent work experience
- Relevant certifications (CISSP CSSLP PJPT OSCP OSWE eWPT GWEB etc.
Special Physical and/or Mental Requirements:
- Travel by air and overnight as required 10 amount of time.
Deadline to apply Accepting applications on an ongoing basis
Hiring Range:
$88000.00 USD $110000.00 USD annuallyIncentive Potential: This position is eligible for additional compensation awards that may include an annual incentive plan sales incentive orcommissionpotential. Specific details of the additional compensation eligibility for this position will be provided during the recruiting and interview process.
Benefits at VF Corporation: You can review a general overview of each benefit program offered including this years medical plan rates on www.MyVFbenefits and by clicking Looking to Join VF Detailed information on your benefits will be provided during the hiring process.
Please note our hiring ranges are determined and built from market pay data. In determining the specific compensation for this position we comply with all local state and federal laws.
At VF we value a diverse inclusive workforce and we provide equal employment opportunity for all applicants and employees. All qualified applicants for employment will be considered without regard to an individuals race color sex gender identity gender expression religion age national origin or ancestry citizenship physical or mental disability medical condition family care status marital status domestic partner status sexual orientation genetic information military or veteran status or any other basis protected by federal state or local laws. If you are unable to submit your application because of incompatible assistive technology or a disability please contact us at . VF will reasonably accommodate qualified individuals with disabilities to the extent required by applicable law.
Pursuant to all applicable local Fair Chance Ordinance requirements including but not limited to the San Francisco Fair Chance Ordinance VF will consider for employment qualified applicants with arrest and conviction records.
Required Experience:
Unclear Seniority
Employment Type
Full-Time
