Senior Security Analyst - Web Applications - 90% Remote

Description

Senior Security Analyst - Web Applications - 90% Remote

DETAILS
Location: Neenah, WI
Position Type:  Contract - 5months +
Hourly Range:  BOE!
Remote: 90% after first month - Candidates will have to be on-site at client location for ramp up period for roughly 2 weeks.
    
ABOUT THE POSITION
GTN Technical Staffing is looking for a Senior Security Analyst with a background in creating secure web applications to join a global, world-renowned, Fortune 500 company. You will interact with business partners, development, and network and operations teams, giving you the opportunity to learn our client's business and IT objectives. This will further your ability to function successfully in other enterprise-level environments once your contract is complete, enhancing your Resume, job history, and understanding of the ins-and-outs of global operations.

You will be the liaison for several teams and your role will be to identify security issues within our client's infrastructure and web hosting architecture and applications. You will work with developers to explain what about the risks and vulnerabilities are issues, and you will advise development teams on the best possible resolution. You must have experience performing penetration testing for web sites, as well as performing and reviewing web security scans and reporting any security vulnerabilities. You will also work directly with 3rd parties, including our client's hosting provider to implement new web application Firewalls. You must be able to effectively document and develop web security polices, processes, and procedural information.

TECHNICAL REQUIREMENTS

• 5+ years as a Security Analyst/Engineer - Secure Web Architecture and Web Application Preferred.
• Internet Information Services (IIS)/HTTP Server/.NET Framework
• Web Application Security
• Secure Development Coding and Practices
• Cross-Site Scripting (XSS)
• Web Application Hosting Database - Imperva
• Web Security Scanner - Acunetix  
• Cyber Risk Assessment
• Identity and Access Management
• OWASP (Open Web Application Security Project) .NET Tools - Security Design/Penetration Testing/Incident Response.
• Windows Server
• Some Knowledge of Networking Concepts/Technologies/Protocols
• Domain Name System (DNS) Tools
• Transmission Control Protocol/Internet Protocol  (TCP/IP)
• Secure Sockets Layer (SSL)/Transport Layer Security (TLS)
• Dynamic Host Configuration Protocol (DHCP)
• Load Balancing