DuluthRecruiter Since 2001
the smart solution for Duluth jobs

Senior Consultant

Company: Synopsys, Inc.
Location: Virginia
Posted on: June 10, 2021

Job Description:

Job Description and Requirements

Synopsys, Software Integrity Group, is named a leader for 2020 in the Gartner Magic Quadrant for Application Security Testing (AST), in recognition of our vision and ability to execute. Security and risk management leaders will need to meet tighter deadlines and test more-complex applications by integrating and automating AST in the software life cycle eliminating risk before it puts them at risk. Every business runs on software, and defects in software create risk. We've curated the most powerful products and services to create one comprehensive platform that enables our customers to detect and remediate defects across their entire SDLC. To find out more about Synopsys SIG, check out https://www.synopsys.com/software-integrity.html.

Senior Security Consultant

If you are inquisitive, have an urge to know how things work, how to break and fix things and have a passion for building software in the right way, with security built in, we'd love to hear from you.

Our software security consulting business is all about enabling customers build security into their software. We do this at all stages: From architecture & design, to implementation, to testing and deployment, as well as, through improvements to governance and processes surrounding all of software development.

Synopsys Software Security helps customers with immediate tactical needs such as education, software security architecture review, code review, testing, cloud assessment, and mobile and embedded device assessments. We also direct customers through longer term strategic initiatives like DevSecOps pipeline creation, software security maturity action plans, and maturity measurements.

Responsibilities and Duties

  • Secure Software Design and Architecture (incl. Threat Modelling, Architecture Risk Analysis)
  • Full-breadth DevSecOps Consulting Services (People, Process, Technology)
  • Web, Mobile & Embedded Penetration Testing
  • Secure cloud architecture and review
  • Source Code Analysis
  • Network Security Analysis
  • Application Reverse Engineering
  • Database Security Analysis

Qualifications

  • Software security weaknesses, vulnerability and secure code review
  • Secure SDLCs and DevSecOps
  • Software attack and exploitation techniques
  • Cloud security in AWS, Azure or GCP
  • Familiarity with at least one Cloud vendor and related security services (Azure, GPC, AWS)
  • Familiarity with Docker, Kubernetes, Git, Jenkins, GitLab, Artifactory, HashiCorp Vault a plus
  • At least one software programming language and framework
  • Concepts of defensive programming, OWASP Top-10, and SANS Top 25 vulnerabilities
  • Risk scoring standards such as NIST 800-30 r1, CVSS v3

Experience

  • Typically requires 5+ years with one or more of C/C++, ASP.NET, Java, Java EE, multiple RDBMS & operating systems
  • Conducting secure code reviews, design reviews, and threat modelling
  • Conducting reverse engineering
  • Performing application penetration testing
  • Multiple OS such as Linux, Mac OSX, iOS, Android, or Windows, their nuances, strengths and weaknesses
  • Desirable: Experience working with other languages (e.g. JavaScript, Python, Ruby, PHP, Perl, COBOL, SQL, or Assembly)

Consulting Skills

  • Ability to interface with clients utilising consulting and negotiating skills
  • Ability to undertake and complete tasks independently, meet schedules & delivery timelines, and to move swiftly from concepts and theory to action
  • Ability to prioritise and switch gears in a time-sensitive managed services environment
  • Ability to identify risks and take due course of action to either address or escalate risks to appropriate stakeholders
  • Proven experience of producing high quality, actionable, client-orientated reports

Team-oriented Skills

  • Ability to lead multiple project teams; give directions and ensure that tasks are executed consistently
  • Ability to mentor and help develop or improve skillsets of a team
  • Ability to monitor and track the progress of team members and help them achieve career goals

Project Management

  • People: You can lead a team, give direction, and ensure tasks are executed consistently
  • People: You can mentor team members to take on leadership roles and assist them in becoming team leads
  • Projects: You can demonstrate the ability to plan, execute and closeout multi-person projects
  • Projects: Tracking the progress of projects while keeping resource management informed

Communication

  • Written communication skills for use in preparing formal documentation, Statements of Work, proposals, white papers, and case studies
  • Verbal skills that include the ability to clearly articulate thoughts and to deliver presentations and training to people with different levels of experience and knowledge

Demeanor

  • You are enthusiastic, highly motivated and committed to your work. You do this because you love it.
  • You've got an entrepreneurial drive and want to help grow this business
  • Flexibility and willingness to travel

Education and Certifications

  • Bachelor's Degree or Master's Degree in Computer Science/Engineering or equivalent experience
  • Desirable - Master's Degree in cybersecurity related field
  • Desirable - Industry certifications including, but not limited to: OSCP, CHECK Team Leader, CREST certified

Inclusion and Diversity are important to us. Synopsys considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability.

Keywords: Synopsys, Inc., Duluth , Senior Consultant, Other , Virginia, Minnesota

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Minnesota jobs by following @recnetMN on Twitter!

Duluth RSS job feeds