As a subsidiary of Sony Corporation, Sony DADC is part of the world’s leading electronics and entertainment Company with facilities spanning the globe. Sony DADC is an integrated provider of end-to-end Supply Chain Solutions for physical and digital content to customers across many industries including entertainment, marketing, advertising, education and consumer electronics. We help content owners deliver unique consumer experiences while keeping pace with rapidly evolving consumer demand and emerging multi-channel distribution models. Our market insight and proven expertise across both physical and digital media enables us to provide the most advanced services that deliver the speed, efficiency and quality required by today’s market.
The Application Security Specialist position provides IT Security supporting Sony DADC, including both the U.S. and global entities. The position is located in Marina del Rey, CA.
Responsibilities
• Perform security risk assessments and security exposure analysis of business applications and databases; identify, document, and report security issues and concerns to management; follow-up on action items to resolve security exposures.
• Participate in application analysis and design sessions with the Application Development teams and the IT Architecture Team.
• Direct and assist the Architecture Group in establishing an application security infrastructure for the Business Segments and their applications/databases.
• Evaluate and participate in outsourcing initiatives and/or third party processing.
• Operate and evaluate code scanning and review tools; perform code and security settings reviews of applications and databases.
• Develop and enforce security requirements as part of the Company’s application and system development lifecycle, including the development and enforcement of security processes and/or methodologies to:
(1) integrate security requirements within applications and databases; and
(2) monitor security settings within applications and databases.
• Develop security policies, standards, risk/threat models, procedures, and guidelines that will assist the application development teams in integrating security requirements within their applications and databases.
• Provide training and advice to junior application security staff and/or other non-security professionals, including staff in the business units.
• Provide input to the annual security budget cycle.
• Provide understanding of application security and software quality assurance and influence the Application Development Teams (as well as the Business Segments) in integrating security at the design and development phase.
• Contribute to the technical understanding and promotion of new and existing information security standards, solutions and tools with respect to applications (Web-based, Legacy, etc.) and databases.
REQUIREMENTS:
• 8+ years experience with complete software development life cycle.
• 5+ years design and development of multi-tier applications.
• 3+ years experience developing security models for applications.
• Four-year degree in Computer Science or related field.
• Must be an expert in security related processes such as Change Control, Risk Management, Quality Assurance and Auditing.
• Must have solid knowledge and experience with .NET architectures (C#), Objective-C, and Java development frameworks with respect to security.
• Must have experience designing and implementing web services (ideally on multiple platforms such as J2EE/.NET) with a particular emphasis on security.
• Strong technology skills in most of the J2EE technology areas like, EJBs, Servlets, JSPs, JMS, Message Driven Beans, transaction Management as well as strong knowledge of the .NET platform SOA components.
• Hands-on development experience using .NET and J2EE with documented security focus and challenges.
• Hands-on programming/coding experience with .NET C#, Java, and other scripting languages.
• Excellent communication skills (both oral/written).
• Experience building scalable, mission-critical applications focused on security.
• Demonstrated ability to work effectively in a fast-paced, high volume, deadline-driven environment.
• Professional maturity in dealing with all levels of management and staff.
• Professional security certifications a plus.
SONY is an Equal Opportunity Employer. All persons shall have the opportunity to be considered for employment without regard to their race, color, religion, national origin or ancestry, age, disability, sex, marital status, sexual orientation, obligation to serve in the armed forces of the United States, citizenship, disabled veteran status, Vietnam era status, or any other characteristics protected by applicable federal, state or local laws.
To apply for this link,please CLICK HERE
No comments:
Post a Comment