InComm

Software Development Application Security Specialist

US-TX-Dallas
Type
Full-Time

Overview

On-Line Strategies, Inc. (“OLS”), an InComm Company, is a software and services company focused on processing complex, large volume, and high-speed transactions, in a mission-critical environment.  OLS was founded in 1996.  For additional information regarding OLS, please visit www.olsdallas.com.

 

InComm is a leading provider of cutting-edge prepaid products, services and transaction technologies to retailers, brands and consumers. InComm supports more than 400,000 points of distribution and helps retailers build prepaid card destinations, connects brands with new markets and gives consumers a simple, secure shopping experience.

 

InComm stays ahead of emerging trends by analyzing market needs and leveraging its global, innovative commerce platform, go-to-market expertise and extensive partner relationships. With 123 global patents, InComm is headquartered in Atlanta and has offices in North and South America, Europe and the Asia-Pacific region. For more information, visit www.incomm.com or follow us on Twitter at www.twitter.com/incomm.

About This Opportunity

On-Line Strategies is looking to expand its team with a Software Development Application Security Specialist.

 

 

This position will be responsible for assisting and performing technical activities related to the security of the development, implementation and mentoring of our applications, throughout our Software Development Lifecycle.

 

 

Responsibilities

On-Line Strategies handles the growing complexity of payment processing for retailers so they can focus on what they do best – serving their customers. Our comprehensive switch platform seamlessly handles various forms of payment, from credit and debit to gift cards and loyalty rewards, empowering our partners to spend their time and creativity on growing their business and developing new products. By leveraging our expertise and experience, you can stay on the cutting-edge of payment operations and stand apart from your competition.

  • Performs software security source code reviews
  • Participates in software testing including fuzzing, input and output validation
  • Guides and trains developers on application security issues
  • Performs and maintains Threat Modeling exercises for our applications
  • Maintains all OLS Web Application Firewalls including testing, creation, tuning of policies, certificate management and ciphers. Updates firmware on all WAF’s as needed throughout test, qa, and production lifecycles.
  • Participates in vBSIMM assessments and provides recommendations for process improvements.
  • Review static and dynamic scan results of developed application software and provide guidance to developers on flaw remediation.
  • Performs application layer penetration testing and internal application security assessments
  • Assists with IT Security operations including Web Application Firewall log reviews, system monitoring, change control processes and documentation review.
  • Offers technical information security support to staff responsible for development of OLS software including SSL negotiations, using secure cipher suites, and protocols.
  • Assist with PCI, HIPAA, SOC2 and other annual assessments and audits including evidence collection.
  • Other duties as assigned.

 

 

Qualifications

 

  • 5 years of Security Software Development experience
  • Bachelors degree in Computer Science
  • Knowledge of secure Java coding concepts
  • In-depth knowledge of HTTP protocol, payloads and Web Application Firewalls e.g F5 ASM WAF’s.
  • Working knowledge of OWASP Top 10 concepts within a development environment.
  • Experience with static and dynamic code scanning software such as Veracode.
  • Experience with BurpSuite, ZedProxy or equlivent toolsets.
  • Microsoft office tools to include Word, Excel, PowerPoint.
  • IT Security and or development experience in a PCI-DSS environment is beneficial.
  • Experience with the Payments industry is beneficial but not required.
  • Professional IT Security designation, such as CISSP, Security+, SANS GWAPT, GWEB or GSSP-JAVA is beneficial. 

OLS/InComm is an equal employment opportunity employer.  We adhere to a policy of making employment decisions without regard to race; color; religion; national origin; sex; sexual orientation; pregnancy, childbirth, or related medical conditions; age; disability or handicap; citizenship status; service member status; or any other category protected by federal, state, or local law.

 

*This position is eligible for the Employee Referral Bonus Program #LI-TH1

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed