|
|
Perform manual and automated dynamic grey-box security testing and remediation testing on a wide range of web and native mobile-based applications hosted in multiple pre-prod environments.
Provide analysis and remediation recommendations to application and infrastructure teams responsible for the maintenance of vulnerable applications
Execute and provide analysis and remediation recommendations for automated static source code security testing
Provide approval for applications to be released into a production environment based on the severity of open vulnerabilities in the application environment and the intended remediation date
Manage a third-party security testing program, responsible for scheduled, regular security assessments of high-risk applications performed by an outside vendor
Manage a secure coding development training program for application and mainframe development teams, designed to spread security awareness and reduce the overall level of risk from the development stages of SDLC
Performed manual and automated dynamic application security assessments on internal-facing web applications
Analyzed and validated application security testing-identified vulnerabilities and presented them to application development teams responsible for the implementation and maintenance of new and legacy applications
Led the selection, implementation and management of a secure software development training program designed to improve the overall security of web and mainframe applications by instructing developers how to utilize proper secure coding techniques
Improved application security architecture and security testing processes by creating more efficient workflows, reducing the time required to provide information security deliverables to both application teams and executive leadership
Analyzed, compiled and presented key Application Security and other Security Operations data to executive leadership
Performed network analysis and detection operations to prevent rogue wireless access points from connecting to and accessing internal systems
Reviewed Threat and Vulnerability Management (TVM) system reports for high-risk vulnerabilities
Reviewed developing information security policies and standards for enterprise-wide distribution
Formally evaluated various security solutions for potential future corporate purchase
Provided analysis and developed reports for application security testing results
Companies Worked For:
School Attended
Job Titles Held:
Degrees
Advertisement
