Java / J2EE Security Developer 8/25/2016

Systel Technologies Pleasanton, CA

Company
Systel Technologies
Job Classification
Full Time
Company Ref #
29283418
AJE Ref #
575981239
Location
Pleasanton, CA
Job Type
Regular

JOB DESCRIPTION

APPLY
We are looking for JAVA / J2EE SECURITY DEVELOPER for our client based @ PLEASANTON, CA

Role: JAVA / J2EE SECURITY DEVELOPER

Location: PLEASANTON, CA

RATE : Depends on experience

Mode of Hiring: FULL-TIME ONLY

NOTE : TEAM IS LOOKING FOR CANDIDATES WHO HAS EXTENSIVE EXPERIENCE IN JAVA / J2EE DEVELOPMENT WITH SECURITY DOMAIN EXPERIENCE .

MUST HAVE SKILLS

10 - 12+ years' experience in building Web application using Java.

Experience to Architect/design/fixing code across Web applications

STRONG HANDS ON EXPERIENCE IN JAVA CODE DEVELOPMENT RELATED TO WEB SECURITY.

MUST HAVE STRONG UNDERSTANDING/KNOWLEDGE OF SECURITY VULNERABILITY LIKE

o BRUTE FORCE

o MEMORY SAFETY VIOLATIONS, SUCH AS:

BUFFER OVERFLOWS AND OVER-READS

DANGLING POINTERS

o INPUT VALIDATION ERRORS, SUCH AS:

FORMAT STRING ATTACKS

SQL INJECTION

CODE INJECTION

E-MAIL INJECTION

DIRECTORY TRAVERSAL

CROSS-SITE SCRIPTING IN WEB APPLICATIONS

HTTP HEADER INJECTION

HTTP RESPONSE SPLITTING

o RACE CONDITIONS, SUCH AS:

TIME-OF-CHECK-TO-TIME-OF-USE BUGS

SYMLINK RACES

o PRIVILEGE-CONFUSION BUGS, SUCH AS:

CROSS-SITE REQUEST FORGERY IN WEB APPLICATIONS

CLICKJACKING

FTP BOUNCE ATTACK

PRIVILEGE ESCALATION

Provide engineering designs for new software solutions to help mitigate Frond End security vulnerabilities

Contribute to all levels of the architecture

Maintain technical documentation

Consult team members on secure coding practices

Develop a familiarity with new tools and best practices

Requirements

Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures)

Interest in all aspects of security research and development.