HiringCafe
Posted 4y ago

Web Security Architect

@ Mouser Electronics
View All Jobs
Mansfield, Texas, United States
OnsiteFull Time
Responsibilities:evaluate standards, mentor developers, perform code reviews
Requirements Summary:5+ years of web development security experience; BS or equivalent; strong knowledge of OWASP, C#, .NET, SQL Server, and security testing; mentoring security practices to teams.
Technical Tools Mentioned:C#, .NET, SQL Server, Visual Studio, XML, JSON, JavaScript, AJAX, MVC, Web Forms, ASP.NET, Web API, WCF, Burp, ZAP, InsightAppSec, Acunetix
Save
Mark Applied
Hide Job
Report & Hide
Job Description

SCOPE

The Internet Business team is responsible for multiple Ecommerce and back office applications written on .NET development platforms. The Web Security Architect validates all aspects of the web application stack and associated applications for conformance to security standards, works with the development team to develop and implement security standards and training, ensures confidentiality, integrity, and availability of the Mouser ecommerce site, and reviews and documents, and assesses code releases.

 

ACCOUNTABILITIES

Evaluates new or modified programs and produces/reviews the technical specifications created by team members for security standard compliance.

Assists in implementing appropriate security features into the implementation of complex applications using C#, ASP.Net, .NET Framework, SQL Server 2012, Visual Studio 2015/2017, XML, JavaScript, AJAX, MVC and Web Forms, and other related web technologies.

Designs and develops ecommerce and supporting applications for use in a multiplatform environment supporting globalization.

Plans, schedules, and conducts security/penetration tests as appropriate; monitors test results; takes required corrective action in collaboration with other team members. 

Designs and develops security configurations for solutions for existing or new applications and works with application team to implement them.

Requires thorough understanding of web-based security as related to Microsoft technologies.  Must stay up to date on current security, Microsoft and Web technologies.

Must mentor and train the development team on security practices for new or existing applications and current technology trends.

Must be able to perform secure code reviews and work closely with the application development teams to ensure relevant security standards are met. 

Works as the liaison between web development teams and information security.

Attends team meetings for both Internet Business and IS/Software Development.

Reviewed annually by Information Security and Internet Business.

Other duties as required.

 

QUALIFICATIONS

 

EDUCATION & EXPERIENCE

Requires a Bachelor’s degree or equivalent experience and at least 5 years’ experience in Web Development making use of most of the security standards, languages, tools, and applications listed in the “Skills” section of this document.

 

SKILLS & CERTIFICATIONS

Thorough knowledge of:

•OWASP Top 10 and relevant mitigations

•C#

•XML/JSON

•JavaScript

•SAML and/or oAuth

•Application level encryption of sensitive data

•.Net Framework 4.5

•SQL Server 2012/2016

•Web API/WCF/REST Web Services

•Visual Studio 2015/2017

•ASP.NET Web Forms

•ASP.NET MVC

•Applicable Microsoft web related technologies

Knowledge of:

•WebApp penetration testing Burp/Zap/insightAppsec/Acunetix/etc

•PKI

•AJAX

•JQuery

•HTML5

Strong analytical and problem-solving skills

Strong team-oriented interpersonal and communication skills

Self-starter and finds issues and opportunities and makes recommendations to management

 

This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.

Category:IT/IS

Equal Opportunity Employer, including disability and veterans.

#LI-PS1