Deloitte Application Security Specialist in Hermitage, Tennessee
Deloitte Services LP includes internal support areas such as Marketing and Communications, Human Resources/Talent, Information Technology, Real Estate, Business Services and Financial Support Services.
Application Security Specialist
Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte s Information Technology Services (ITS). We are insatiably curious and life-long learners focused on technology and innovation.
Work you ll do
The US Application Security Team focuses on evaluating the security posture of Web Applications, Mobile Applications, API s and Web Services. This position will focus on performing application security source code review and automating several of our process and developing security solutions that will influence the way we do business with our clients. The tasks included by position include:
Work jointly with Development Teams, Architects and Cyber Defense teams to review application code and be able to articulate security posture of applications and back-end systems.
Be able to write scripts and API integrations that help streamline our process and support our SecDevOps operations.
Conduct web application Penetration Testing.
Conduct web and mobile application security vulnerabilities assessments using Static Application Security Test (SAST) and Dynamic Application Security Test (DAST) using scanning tools / manual checks and notify the appropriate team to take necessary action.
An understanding of modern web application development languages is necessary to communicate mitigating controls and potential remediation activities.
Ability to design, recommend, plan, develop and support implementation of innovative security solutions.
Identify potential security exposures that may currently exist or may pose a potential future threat to the U.S. Firm s applications. Ensure Cyber Defense management is notified when these exposures are identified, as well as a proposed solution for remediation.
Information Technology Services (ITS) helps power Deloitte s success. ITS is the engine that drives Deloitte, which serves many of the world s largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The 2,200 professionals in ITS deliver services including:
Security, risk & compliance
The Cyber Security team vigilantly protects Deloitte and client data. The team is responsible for a strategic cyber risk program which adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team protects the Deloitte brand.
Category: Information Technology
As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.