Overview
Skills
Job Details
App Security Advisor | Trainer
Reston, VA Hybrid F2F interview
Long term
Job Description
This person will need a strong Application Security background, but wants to be more in the training portion of the job. This person should want to help train the AppSec team when it comes to learning the skills, tools, and troubleshooting issues.
****They will be coming up with the content almost like a professor. They will train the development team as they work on different topics.
They'll be putting together presentations and they will also hold office hours once a week.
They need to have a knowledge of the skills and tools listed below but they don't need in depth hands on experience with them.
Additional Skills & Qualifications
MUST HAVES:
The candidate must have an Application Security Background (Static Code Analysis SAST, Penetration Testing DAST) They must have DevOps pipeline knowledge and troubleshooting capabilities. They also must have experience working with application teams (developers) to resolve their issues.
If issues occur during application security scanning process this person is responsible for root cause analysis and troubleshooting
Respond to tickets through ServiceNow
Understand basic code and assist Development teams with troubleshooting code issues Java, Python, Shell any experience is fine
Understand how Jenkins pipelines are setup, troubleshoot basic CI/CD pipeline issues
Check logs in AWS to determine what is causing issues / source of issues
Experience with logging into EC2 containers
Linux / Unix command line experience is required
JIRA or similar experience is required
Look at logs, provide remediation to users, make code changes, and work with AppDev or other teams to fix issues related to application security scanning process.