Share Email Opening Title Security Consultant (Secure Code Review)  Category Services   Description NetSPI is a dynamic cyber security company headquartered in Minneapolis. We are a recognized leader in penetration testing and attack surface management. We specialize in premier offensive security testing, delivered by security experts, through a modern and unforgettable customer experience. NetSPI is going through a period of hypergrowth and to keep up with demand we are always looking for innovative minds to join us in helping the largest organizations in the world protect their technology and data from cyber threats. If you thrive in a collaborative setting and enjoy working with best-in-class technology and people, we want to meet you! NetSPI is seeking Security Consultants for our secure code review practice. These individuals will primarily serve as a resource for delivery of client assessment services. Primary Duties: Deliver secure code review assessment on programming languages such as Java, C#, PHP, Python, Perl, C/C++ , SQL, Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques Train and assist developers in writing secure software and remediating existing vulnerabilities Develop and review custom vulnerability description, business impact and remediation content Develop, research and recommend open source tools assisting in secure code review Contribute to development and delivery of secure coding and remediation training Mentor and assist team members in effectively delivering assessments and enhancing skillsets Recommend best practices to integrate and automate application security testing in SDLC Basic Qualifications: 3+ years of experience in application security including secure code review, web application penetration testing or threat modelling 2+ years of experience in secure code review / static application security testing Detailed understanding of the OWASP Top 10 and CWE Top 25 issues with focus on ability to identify and remediate vulnerability in source code Ability to explain risk and business impact of security vulnerabilities in source code to variety of audience Bachelors Degree in Computer Science/ Engineering Preferred Qualifications: Experience in detecting, analyzing and providing recommendation guidance on security vulnerabilities in at least two of the following languages: Java, C#, PHP, Python, Perl, C/C++ , SQL, Hands-on experience conducting security focused static analysis using commercial SAST tools such as Checkmarx, Appscan Source, Veracode, Coverity, Fortify and SonarQube Experience in software development in at least one server-side programming language Experience in integrating static application security tools in CI/CD environment   Location Remote   About the Organization NetSPI is a fast-growing, dynamic cybersecurity company headquartered in the North Loop of Minneapolis. As the leader in vulnerability orchestration and security testing, we're continually growing, and we pride ourselves on keeping absolutely current and cutting-edge in everything we do.   EOE Statement We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.   Email None Specified  supervisorUID None Specified  This position is currently not accepting applications. To search for an open position, please go to http://NetSPILLC.appone.com WE ALSO RECOMMEND Other Jobs Within Same Category Associate Security Consultant - NetSPI University in Minneapolis, MN Posted on: 3/18/2024 [Apply Now] Associate Security Consultant - NetSPI University in Portland, OR Posted on: 3/18/2024 [Apply Now] Security Consultant (AI/ML) in Remote , NA Posted on: 3/1/2024 [Apply Now] Other Jobs Within 60 Miles -- None found --

Click here for technical assistance.