Evaluates application security in all phases of the software development life cycle. Works closely with team members to define application security best practices, performs software architecture and design reviews, and supports the identification, interpretation, and remediation of vulnerabilities across a variety of applications, programming languages, and platforms.

• Actively hunt for Indicators of Compromise (IOC) and APT Tactics, Techniques, and Procedures (TTP) in network and on host.

• Find evidence of attack, and attackers’ actions thereafter.

• Work with team to produce effective countermeasures against found evidence. Also, contributes to mitigations for future attacks of a similar nature.

• Follow Security Operations Center (SOC) policies, procedures for incident reporting and management. Create a detailed Incident Report (IR) and contribute to lessons learned.

• Analyze network perimeter data, flow, packet filtering, proxy firewalls, and IPS/IDS to create and implement a concrete plan of action to harden the defensive posture.

• Work with SOC team to help contain intrusions.

• Generates documentation as required by the Client.

• Thorough understanding of network protocol behaviors. Ability to understand NetFlow and PCAP.

• Thorough knowledge of open-source tools to visualize PCAP data (Wireshark, TCPDump, etc.).

Minimum Qualifications

• Bachelor’s Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience.

• 5-10 years of experience as an Application Security Developer, Application Security Analyst, or equivalent.

Other Job Specific Skills

• Network Switches

• Network Architecture and Design

• Threat Modeling

• Malware Engineering