|
Java Code Review Analyst
Assist in a Security Code Review for a large scope of work, with over 300,000 lines of code written in various languages, including the use of embedded SQL (Pro*C), VB, and VC++.
The review will require the qualified candidate to be experienced in these areas, and with code review and information security issues.
Will receive source code, written materials, and any other pertinent information from the sponsor. Will review the environment and network, tools, version levels, business case, data diagrams, see how the applications work, and research the most recent security issues with the environment and languages used.
Will establish key criteria and issues in the code review. The analyst will develop scripts that will parse and prioritize files, identify redundancies within the code, identify obvious problems for review, and separate out obvious files with no impact on security.
Team members will review their assigned source language files for vulnerabilities (with the assistance of some automated tools) and will document findings, issues, and recommended remediation in a common database.
Team members will present their findings to other team members in a group meeting for additional validation, input or feedback.
Team members should be familiar with Visual Source Safe, Visual Studio Integrated Development Environment, MSDN, and other development, testing and code review tools or environments. Job Qualifications **5 - 8 week project*** Excellent opportunity for individuals looking for short-term contract work.
Requires Bachelors degree or equivalent and a minimum of 5 years work experience in the following areas: Java, JavaScript, JSP, and a little C, C++, C#.
In particular, we are looking developers with an awareness of the security vulnerabilities inherent in most web-applications, such as Buffer Overflows, Command Injection, Session Management, Flawed Error Handling, and the measures necessary to mitigate those vulnerabilities.
3+ years experience each in two or more of the following software languages in a large team environment:
Visual Basic
ColdFusion
Java
JSP
C
C++
C#
HTML
XML
ASP
.NET
Team members also need experience in Oracle, PL/SQL, Script writing, and testing. US Citizenship Required Yes Security Clearance Required Yes
Contact:
Brent Hicks
Technical Recruiter
Apex Systems inc.
919-836-1234
|
|
|
|
|
|
|
|