Prefer local candidates in Dallas first but willing to look at NY/NJ candidates.
Proficiency in secure coding standards and manual review of code to identify OWASP Top 10 vulnerabilities and SANS Top 25 Programming errors.
NICE TO HAVE
One or more of the following active certifications ISC2 Certified Secure Software Lifecycle Professional (CSSLP), Global Information Assurance Certification (GIAC) Secure Software Programmer (GSSP-Java), EC-Council Certified Secure Programmer (CSP).
Visa requirement: s, holders preferred Will also Consider and L2 EAD
Number of positions:1
Position Summary The Application Security Manual Secure Code Reviewconsultant is responsible for the Manual secure code review and assessment of DTCCs in-house developed source code of Web/Non-web and cloud apps, APIs using manual approach primarily, develop and leverage custom scripts and tools as required. The individual should possess strong knowledge of Secure coding principles across widely used programming languages (Java, Angular/Node JS, Java Script, Python, Ruby etc.) along with excellent communication, analysis and organizational skills.
Interaction with DTCC developers (Application Development) to gather application source code details, conduct code review and provide technical assistance in remediating application security issues will be part of the responsibilities