Static Application Security Analyst Job For 3-6 Year Exp In Micro focus Software Solutions India Private Limited Bengaluru / Bangalore, India – 3150000

Job Description:

Fortify on Demand is looking for enterprise application developers interested in becoming Static Application Security Analysts. Static Application Security Analyst play a key role in analyzing source code for security vulnerabilities utilizing Fortify’s world-class scanning solution, Fortify SCA.

Fortify is the industry-leading provider of Application Security solutions that empowers organizations to develop secure software. Fortify offers a comprehensive portfolio of application security solutions with the flexibility of testing on-premise and on-demand to cover the entire software development lifecycle. Over 80% of security breaches exploit application vulnerabilities, and at Fortify, you will be at the forefront of one of the fastest growing segments in the security market.

As a Software Security Analyst for Fortify on Demand, you will perform static application security assessments (SAST) against multiple programming languages and technologies utilizing Fortify’s world-class vulnerability scanning solution, Fortify SCA. Along the way, you will be able to gain a lot of knowledge on security vulnerabilities and how they are introduced.

Fortify on Demand is our enterprise-grade SaaS platform that enables hundred’s of customers easily create, expand and manage their AppSec programs. More than simply cloud-hosted software, Fortify on Demand is backed by a team of hundreds of security experts that deliver value-add managed services that augment world-class scanning solutions including Fortify SCA and WebInspect. As part of the Fortify on Demand Static Analyst Team, you will help customers secure the future of their applications products by performing static application security assessments (SAST).

Responsibilities:

·Analyze customer source code submissions for vulnerabilities using Fortify SCA/ FOD product

·Validate security findings

·Deliver assigned tasks within the testing cycle of an assessment

Participate as part of a team and maintain good relationships with teams and customers

Education and Experience Required:

• Bachelor’s or Master’s degree in Computer Science, Information Systems, or equivalent.
• Typically 3-6 years experience in Application security with min 2 yrs of Static application security experience

Knowledge and Skills:

• ·Over all min 3+ years industry experience in web security testing and min of 1 to 2 yrs of enterprise web development

  ·2+ years experience in SAST (Static Application Security Testing)

  ·Hands on experience in FoD (Fortify on Demand)

  ·Development experience with Java and/or .Net and client server architecture

  ·Development experience of PHP, Python, C, C++ will be a plus

  ·Strong code inspection skills to validate security issues identified by Fortify SCA/FOD

  ·Strong analytical skills

  ·Knowledge of software design patterns and practices

  ·Object-oriented programming and design knowledge

  ·Knowledge of various types of security vulnerabilities

  ·Experience working in Agile environment

  ·Strong written and verbal communication

  ·Experience with DAST and Hands on experience in Burp Suite, WebInspect, SSLyze, sqlmap, NMAP tools will be a plus

  ·Understanding of application security concepts (ex. OWASP/SANS)

  ·Knowledge of Secure Software Development Life Cycle (SDLC)

Job:

Engineering

Micro Focus is proud to be an Equal Opportunity Employer. Prospective employees will receive consideration without discrimination because of race, colour, religion, creed, gender, national origin, age, disability, marital or veteran status, sexual orientation, genetic information, citizenship or any other legally protected status