Security Software Job Description
Security Software Duties & Responsibilities
To write an effective security software job description, begin by listing detailed duties, responsibilities and expectations. We have included security software job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Software Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Software
List any licenses or certifications required by the position: CISSP, CISA, PKI, FIPS, CISM, OSCE, OSCP, X509, SANS, CSSLP
Education for Security Software
Typically a job would require a certain level of education.
Employers hiring for the security software job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Computer Engineering, Technical, Software Engineering, Information Systems, Science, Education, Mathematics, Electrical Engineering
Skills for Security Software
Desired skills for security software include:
Desired experience for security software includes:
Security Software Examples
Security Software Job Description
- Expertise with static and dynamic application security, penetration testing and vulnerability assessment tools
- Code auditing
- Security and privacy assessments
- Coaching development teams on secure design and security best practices
- Perform system and subsystem integration
- Implement Secure Software Development and Code Analysis Tools
- Scan source code for potential security issues and communicate results to team and customer with recommendations for correction and improvement
- Manage and build a global team of application security engineers
- Manage and improve our internal security development lifecycle
- Evangelize security within the development organizations
- Being motivated, results oriented, and committed to providing outstanding customer service every day
- Sense of ownership for your engineering deliverables
- Present an entrepreneurial and innovative spirit to get things done quickly and efficiently without sacrificing security principles
- Security certification desired (e.g., CISSP, ISSMP, ISSAP, GIAC, CEH)
- Experience in building or implementing security solutions
- Proven skills in leading and developing a Linux application aimed at the enterprise and commercial market
Security Software Job Description
- Strong knowledge of programming languages – Java, Perl, Python, JavaScript, Node.JS
- Tackle complex application security problems
- Mentor and grow application security personnel
- Works with the business and systems team to identify the right architecture for implementing new solutions, products and modules
- You will be able to grow and learn with the top experts within the company, working with the most advanced technologies
- Design core, backend software security components
- Code using primarily .Net, C#, and Classic ASP
- Implement abuse detection and logging systems to surface threats
- Interface with Product Development teams to incorporate their innovations and vice versa
- Performs Mobile Risk Assessments, Vulnerability Assessments, and Penetration Tests
- A minimum of 4 years’ within security engineering focused roles in medium to large scale enterprises, and 6 years of overall development experience
- Extensive knowledge of OWASP best practices and other software vulnerabilities lists
- Experience with compilers, static code analysis, or dynamic analysis strongly preferred
- Experience with iOS, Android, and Open Source security tools like Clang Analyzer preferred
- 5 years experience with Security Solution selling
- Crypto familiarity including TLS, PKI, and key management
Security Software Job Description
- Experience with working with private cloud and public cloud including when using AWS, Azure etc
- UEFI EDK II code development
- Support the capture of key requirements and performance metrics
- Guide the architecture & implementation of new products
- Find and define secure means for all of our product teams to achieve their goals
- Build tools and libraries to “engineer-away” the complexities of secure software
- Build tools to monitor, detect and block security shenanigans and other badness
- Leverages Software Development expertise to conduct and review static code analysis (HP Fortify
- Evaluates software development by completing Application and Security Development (ASD) Security Technical Implementation Guide (STIG) reviews against newly developed software
- Performs vulnerability scans on testing network assets
- Minimum 2 years Software Systems Engineering experience
- 1+ year of experience with secure OS-architecture and layering for embedded systems
- 1+ of experience with software based hacking and attacks to embedded systems including communication protocols, wired and wireless based attacks
- 1+ of experience with software modeling tools
- 1+ of experience with software architectures and standards
- Strong coding skills in popular languages and platforms, including C/C++, C#, Java, Javascript/Typescript, SQL, assembly, Ruby, Python, and others, and the ability to pick up new platforms quickly
Security Software Job Description
- Utilized Remedy for tracking testing activities
- Drive vulnerability detection and remediation (scanning, patching, testing) efforts for continual improvement and compliance
- Ensure internal developers can access the production resources they need to deliver an high-velocity cloud business
- Using existing OTI authorization documents, create an inventory of all software that requires Assessment or Authorization from the OTI AO
- Perform Static Code Analysis on OTI source code and prepare a standardized report to the OTI AO and Program Office detailing any vulnerabilities found
- Coordinate with upstream communities and vendors for embargoed bugs, their patches, and common release dates
- Build threat research systems for both internal tools and customer-facing products
- Strategic Planning– Develops and maintains a comprehensive vision and strategy of how software engineering can and will be used to accomplish department objectives of protecting our systems and data while facilitating new and existing business models highly dependent on technology
- Program Management -Manage a portfolio of software development and sustainment efforts including the pipeline of projects/tasks to create, evolve, and change them as needed
- Using existing authorization documents, create an inventory of all software that requires Assessment or Authorization from an AO
- Protocol Inspection Engines
- Designing security policy framework
- At least 3 to 5 years of experience in software security with a thorough understanding of infrastructure and network security
- Architected software solutions for of the leading cloud service providers like Amazon Web Services (AWS) or Microsoft Azure
- Experience working on cloud based services (including SaaS, PaaS, IaaS) with a solid understanding of security challenges and security best practices for developing and deploying cloud applications
- Proven experience in conducting threat risk analysis, security architecture/design reviews, code reviews, static and dynamic security assessments of applications, systems and networks
Security Software Job Description
- Develop and publish the procedures and methodologies for assessing software
- Perform Static Code Analysis on source code and prepare a standardized report to an AO and Program Office detailing any vulnerabilities found
- At the request of a Program Management Office, perform static code analysis to assist in the System Engineering Technical Review Process
- Experience using IDA, idapython, ollydbg, gdb
- Experience reverse engineering binary applications
- Experience with vulnerability assessment and exploit development
- Experience with embedded devices
- Knowledge of cryptographic principles
- Provide input and guidance on security standards and equipment
- Work in conjunction with the Manager, Global Physical and Technical security to maintain the access control and video management systems at optimal levels
- Previous industry experience as an SME on software and applications security with knowledge of web and mobile application vulnerabilities, business logic flaws and threats
- A background in security for web-based applications
- Must have a strong understanding of operating system concepts such as tasks, signals, timers, priorities, deadlocks, stacks
- Solid grasp of software engineering principles and process at scale
- Relevant cloud and container experience
- Solid background in Linux and security