Descriere job

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

DESCRIPTION

Due to ongoing growth within a key client we require a Security Consultant to play a key role in establishing our Romanian onsite presence.

REQUIREMENTS

  • Ability to face off to the clients to provide helicopter view on the security processes in conjunction with a deep understanding of the business needs;
  • 3+ years of professional experience in the field of Software Development;
  • Passion to develop in the field of Security;
  • Understanding of at least one Security Development methodologies (e.g. Microsoft SDL, OWASP OpenSAMM, BSIMM etc.);
  • Understanding of main Security-related activities in development such as Security Requirements gathering, Risk Assessment, Threat Modeling, Security Code Review;
  • Understanding of security threats, their classification;
  • Understanding of most common implementations of the Threats (e.g. XSS, SQL Injection, XSRF, buffer overruns, brute force, rainbow tables, DoS etc.) and how they match the general classification;
  • Understanding of main security concepts and principles;
  • Understanding of main areas of protection and levels of defense;

RESPONSIBILITIES

  • Lead and coordinate Security Audits for on-going projects: (from Architecture, Process, Risk and Testing etc.);
  • Work as a Security Consultant helping to establish secure development activities in SDLC end-to-end, be able to provide clarifications related to security in development;
  • Perform Application Security Trainings for Development Teams;
  • Contribute to building Secure Architecture and Design for the projects;
  • Communicate with customers and teams, be able to convey the message about importance of Secure Software development Life Cycle, the ways of establishing it;
  • Cooperate with all sub-teams: BAs, Developers, Qas; build consistent understanding of Security Requirements, main Threats, Mitigations implemented;
  • Be able to communicate and coordinate work with other Security Teams - Infrastructure Security Experts, Penetration Testers;

WE OFFER

  • We believe that the greatest strength of the company is its people. EPAM is fully committed to help its employees to reach their full potential and achieve their professional goals through continues learning. With this in mind, we would like to introduce to you few of the many opportunities and services which we believe will help you expand your current knowledge ;
  • Full access to cutting-edge tools and technologies;
  • Competitive compensation depending on experience and skills;
  • All-around Social package: professional & soft skills training, medical & family care programs, sports;
  • Relocation opportunities;
  • Free English classes;
  • Unlimited access to LinkedIn learning solutions;
  • Continuous experience exchange with experts and professionals worldwide;
  • Friendly team and comfortable working environment;
  • Engineering, corporate, and social events within and outside the Company;
  • Flexible working schedule;
  • Opportunities for self-realization;