Security Consultant
صاحب العمل نشط
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
شارك هذه الوظيفة
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكتروني
5+ سنوات
لم يكشف
1 وظيفة شاغرة
الوصف الوظيفي
This is a remote position.
We are looking for a highly-skilled Security professional with a good aptitude for Threat Modeling, ability to read through (software) architectural documents and requirements from the different business groups and give accurate and actionable recommendations for the engineers to implement. No coding is expected in this role, but you would need to have a good understanding of software architecture and development for threat modeling purposes.
Job Title: Security Consultant
Location: REMOTE
Contract: 6+ Months
***Independent/Direct Contractors only
Responsibilities
- Identify designs and implementations which go against best practices and security vulnerabilities.
- Analyze the system and break it down into key components based off logic, and speak to security risks, which may be found in each of those components.
- Apply sound logic and risk determination in relation to risk acceptance and business operation impact.
Requirements
- Threat Modeling - must have very strong understanding and experience, including the ability to unpack complex technical diagrams and documentation contextually and identify the components that must be reviewed
- Offensive Security Perspectives & Techniques - must have deep understanding of OWASP Top 10, including Penetration Testing and External XML Entity (XXE) injection
- System Design & Architecture - understanding of the concepts of code and script structures (concurrency in Go programming, APIs, JWT token, concept of microservice architecture, etc.)
Threat Modeling - must have very strong understanding and experience, including the ability to unpack complex technical diagrams and documentation contextually and identify the components that must be reviewed Offensive Security Perspectives & Techniques - must have deep understanding of OWASP Top 10, including Penetration Testing and External XML Entity (XXE) injection System Design & Architecture - understanding of the concepts of code and script structures (concurrency in Go programming, APIs, JWT token, concept of microservice architecture, etc.)
نوع التوظيف
دوام كامل
