Posted on: December 9, 2018
1 year plus contract for a Security Analyst/Engineer. Candidates should be local and willing to work onsite in Greensboro. Must be able to pass criminal and drug screen. Duties include: working with the development team for a large applications integration project (API)Candidates must have 4-5 years demonstrable, real world experience with the following: --- Solid understanding of relevant security domains, e.g. - OWASP & API security. --- OAUTH2 & Federation in a highly distributed environment. --- PKI infrastructure and implementation in a hybrid cloud environment. --- API related security patterns & best practices for both internally and externally exposed APIs. --- Network elements as related to API and API Gateway security, e.g. - firewalls, VPNs, IP whitelisting/blacklisting, subscription keys, etc. --- Use of network elements as related to Enterprise Integration, e.g. - DNS, Directory, Virtual IPs, Load Balancers, Reverse Proxies & Domains. --- Working knowledge of Enterprise integration patterns & best practices. --- Understanding of issues specific to designing and deploying APIs for mobile vs. public web vs. on premise applications. --- Understanding of the financial implications of cloud architectures, specifically those related to APIs and API Gateway capabilities. --- Experience with common SDLC and ALM patterns & best practices, including Waterfall and Agile development related methodologies. --- Ability to communicate clearly and bi-directionally with multiple teams, both technical and non-technical, as needed. --- Proven ability to implement APIs and microservices that achieve the desired business outcomes. --- Understands the difference between Implicit and Explicit governance and when/where to apply each in the API lifecycle. Specific "Must Have" Skills (can have a mix of skill levels but should have demonstrable experience with each of these: --- 1-3 yrs of API development experience, REST preferred, language doesn't matter. --- 1-3 yrs experience developing OpenAPI (swagger) definitions. --- 1-3 yrs of API Gateway Management using an "off the shelf" package, Azure API Manager preferred,including: o API deployment o Policy development and implementation o Automation of deployments o Backup & Recovery o API Versioning o Documentation o Process Improvement o Developer Portal and Subscription Management --- 1-3 yrs cloud application and network architecture experience related to APIs and API Gateway implementations, Azure preferred. Ideal Candidate will have: --- 1-3 yrs of developing or managing at least one of the following classes of messaging solution: Service Bus, Message Queue, Event Hub, IOT Hub, etc. --- 1-3 yrs developing against, implementing or managing an integration Platform as a Service solution such as MuleSoft, SoftwareAG, etc. --- 1-3 yrs of DevOps implementation experience with CI/CD processes and tooling, Azure DevOps & PowerShell preferred. --- 1-3 yrs developing in one or both the .NET or JAVA languages. --- 1-3 yrs managing or leading a team of software engineers or developers - provided by Dice 5-6 years Security experience - Solid understanding of relevant security domains, e.g. OWASP & API security. Enterprise Integration -Cloud, Azure, etc.,
Keywords: CRG, Greensboro , Security Analyst, Professions , Greensboro, North Carolina
Didn't find what you're looking for? Search again!