Product Security Specialist III

Forcepoint   •  

Herndon, VA

Industry: Information Services

  •  

5 - 7 years

Posted 424 days ago

This job is no longer available.

Essential Functions

  • Perform application and infrastructure penetration tests, on Forcepoint products and services
  • Perform source code reviews in a variety of languages and platforms
  • Coach developers on secure coding best practices
  • Perform security reviews of application designs, source code and deployments as required, covering all types of applications (web application, web services, thick client applications, appliances, etc.)
  • Technical analysis, testing, and replication of vulnerabilities across Forcepoint products and services
  • Assess the technical and business impacts of product and service vulnerabilities and exploits
  • Work independently when necessary and be self-directed when appropriate

Education, Experience, and Skills

  • BS degree in Computer Engineering, Computer Science, IT, Information Assurance, or related field
  • Minimum 5 years of professional experience in penetration testing, security assessment, secure software development or related field
  • CISSP, GPEN, GWAPT, CEH or willingness to obtain
  • Application development background and security knowledge – example of languages include C, C#, C++, Java, Python, etc.
  • Experience with app. frameworks and libraries (i.e. node.js, Angular.js, etc.)
  • Experience with web service security (i.e. REST, SOAP, etc.)
  • Experience with various security tools and products (Fortify, Burp Suite, HP Webinspect, Checkmarx, Nessus, IBM AppScan, etc.)
  • Experience with Linux and related applications (i.e. Tomcat, Apache, etc.)
  • Good understanding of the components of a secure DLC/SDLC
  • Vulnerability analysis and application reversing skills
  • Understanding of cryptography principles
  • Strong oral and written communications skills