Position Type :
Full timeType Of Hire :
Experienced (relevant combo of work and education)Education Desired :
Bachelor of Computer ScienceTravel Percentage :
0%What you will be doing:
Analyze business requirements and security solutions to deliver business appropriate levels of protection.
Experience and knowledge in static application security testing (SAST) and related tools like Veracode / Checkmarx / Fortiy.
Experience and knowledge in Burp Suite tool for dynamic testing (DAST).
Primarily responsible for application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management).
What you bring:
At least 2 years of development experience, ideally in Java or .NET or any other programing language.
Knowledge of security technologies (encryption, data protection, design, privilege access, etc.)
Proficiency in time management, communications, decision making, presentation and organizational skills
Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules
Excellent decision-making, analytical and problem solving skills
Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization
Experience establishing and maintaining effective working relationships with employees and/or clients
Strong knowledge of development and application security
Knowledge of penetrating testing methodologies and security functional testing
Hands-on experience performing application penetration and static and dynamic security assessments with tools such as: Burpsuite, OWASP ZAP, AppScan, WebInspect, Fortify, Veracode, Checkmarx, etc.
Knowledge of OWASP Top 10/ SANS Top 25, identify vulnerabilities via manual and automated testing methods and how to effectively remediate vulnerabilities associated with each
Expert knowledge of information security principles, web applications, and intermediate familiarity with malicious code and common hacking techniques used by malicious actors
Experience conducting risk assessments and performing threat modeling of applications
Ability to collaborate with teams remotely
Privacy Statement
FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice .
Sourcing Model
Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.
#pridepass
Keyskills: siem information security networking customer relations ids application security testing burp suite music making online privacy problem solving time management threat modeling dynamic testing security testing web applications access management commercial models behavioral training communication skills application security
Fidelity National Financial (NYSE: FNF) is the World€™s largest Title Insurance Company and it is recognized as one of the best managed and most admired companies in the US. Fidelity National Financial India is a wholly owned subsidiary of FNF and provides a spectrum of knowledge and bus...