This position is no longer open for applications

Security Architect

Job Description:

Security Analyst Summary:

Signature Consultants is looking for a Security Architect to work on a contract position with one of our clients located in the Fort Lauderdale, FL area. The Security Architect will report directly to the Security Operations Manager and support the Chief Information Security Officer (CISO) to provide the highest quality of information assurance program to our customers. He or she will perform a critical role with oversight to the security of the clients’ web applications and software development team. The Security Analyst is responsible for maintaining and administering the tools necessary to secure the clients’ end points and provide recommendations for improvements specifically web application firewalls with preference to F5 ASM. You will also work with the Threat and Vulnerability Management Engineer and Data Loss Prevention engineer as it relates to event remediation and incident response activities. In addition, this role is responsible for developing and documenting endpoint security standards and procedures.

Responsibilities:

  • Develop and execute formal web application security test plans to ensure the delivery of quality software applications. Involved in test planning, preparation and communication with client prior to security test execution
  • Perform web application attack & penetration (A&P) testing to find security issue such as risks, defects and logical errors. Collect and analyze security data from manual, automatic and static source review, and integrates them to find best way to address security issue to meet the needs of the business
  • Document all issues and assist in their resolution. Deliver security training and education to technical staff within findings and acts as an internal security consultant to advise or influence business or technical partners
  • Provide quality web application security audits across the various IT functions to ensure quality standards, procedures and methodologies are being followed
  • Perform security services, including: application penetration testing, source code review, and threat modeling
  • Maintain suitable knowledge of threats, risk assignment, remediation strategies, security tools, testing techniques, and security research
  • Design, implement and support security-focused tools and services
  • Perform threat modeling, vulnerability analysis, penetration testing, code review and SDLC support
  • Provide expert advice and consultancy to customers on risk assessment, threat modeling and fixing vulnerabilities

Requirements:

  • Ability to demonstrate understanding of vulnerability remediation
  • Familiarity with malicious code identification and common hacker attack techniques
  • Understanding of Web Services technologies such as XML, SOAP, and SAML
  • 10 years of relevant work experience conducting web application security testing of mission critical applications
  • Knowledge of web application and application development security testing Processes and Strategies
  • Working knowledge of web application security testing tools
  • Experience assessing open source offerings
  • Demonstrated proficiency with CSA controls matrix, OWASP Top 10 and industry standard of web security and application development security standards
  • Experience with commercial and open source web application assessment and auditing packages (e.g. Veracode, Fortify, App Scan, Web Inspect, Burp Suite, Peach Fuzzer)
  • Demonstrated proficiency with development frameworks and languages – Python, Java, C#, .NET etc.
  • Web Server configuration knowledge: Microsoft IIS, Apache HTTP Server, Apache Tomcat
  • Experience in application level attacks, bypassing firewalls, evading intrusion detection
  • Secure code review experience using automated toolsets
  • Mobile security testing and analysis
  • Knowledge of the Software Development Lifecycle in an enterprise environment
  • Strong problem solving and analytical skills demonstrated by the ability to assimilate new information, understand complex topics and arrive at sound analysis and judgment

Desired Skills:

  • Web application firewall management experience (e.g., F5 ASM)
  • Project management skills for managing multiple complex activities
  • Monitor and advise on information security issues related to the systems and workflow to ensure internal security controls are appropriate and operating as intended
  • Support response to information security incidents
  • Create, manage and maintain SDLC security awareness
  • Identify and manage risks
  • Demonstrated proficiency of writing secure code
  • Experience building automated tool sets or expanding existing toolset libraries
  • Ability to work independently and as part of a team
  • Self-Motivated
  • Experience documenting technical standards
  • Experience writing technical reports based on security findings
  • Excellent written, verbal and interpersonal skills
  • License / Certificate (any of the following a plus): CISSP, CISA, CEH, CSSLP, CHFI, CCSP, GCIH, GCIA, PMP, ITIL v3

About Signature Consultants, LLC

Headquartered in Fort Lauderdale, Florida, Signature Consultants was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. For the seventh consecutive year, Signature was voted as one of the “Best Staffing Firms to Work For” and is now the 14th largest IT staffing firm in the United States (source: Staffing Industry Analysts). With 26 locations throughout North America, Signature annually deploys thousands of consultants to support, run, and manage their clients’ technology needs. Signature offers IT staffing, consulting, managed solutions, and direct placement services. For more information on the company, please visit

Apply Now

To apply for this job, please complete the following 6 fields and we will immediately follow-up (* = required).

Choose File
.doc, .docx, .txt, .pdf, .html
Would you like to help us get to know you even better?

The intent of asking for the following information is to assist Signature in meeting its commitments to equal opportunity and affirmative action requirements. Completing and returning this section is purely VOLUNTARY on your part and will have absolutely no effect on the status of your employment application.

Signature Consultants is committed to providing reasonable accommodation to qualified individuals with physical and mental disabilities according to state and federal disability discrimination laws. If, because of a disability, you need assistance or a reasonable accommodation for any part of the employment process, please email hr@sigconsult.com or call 888-838-1020. Signature Consultants will partner with you in good faith to identify and implement a reasonable accommodation, if any, that is appropriate and consistent with its legal obligations.

Signature Consultants is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

EEO is the law: http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf