Application Security Consultant Fortify/HP

Job Location preference: New York, Chicago, SF Bay Area—(also any major US CITY)

In a nutshell –HP/Fortify is looking to hire Application Security Consultants who are passionate about application security, enjoy working with clients and can travel 50% to 75% of the time on a REGIONAL basis. –Ideally they must have Java, or .NET, or C++ Code Development/Code Review experience and Application Security Consulting experience.

Company Overview

Hewlett-Packard's Software and Solutions Professional Services Organization (HPSW PSO) provides software solutions that help customers align IT with business priorities. The HP portfolio addresses all aspects of Enterprise Management - encompassing Business Process Management, IT Service Management, Application management, Infrastructure management, Configuration Management, and Identity Management.

This is an opportunity to work with Hewlett-Packard Fortify Software Solutions and their passionate and energetic team to help our customers build, manage, and deploy their applications more securely across the entire application lifecycle.

Fortify Software protects organizations from cyber-based threats to their digital assets by ensuring that the applications they use to run their business are secure. We are the market leader in the fast-growing area of Software Security Assurance (SSA). SSA gives organizations the power to ensure that their entire software portfolio -- whether develop internally or acquired through 3rd parties -- is secure and free of vulnerabilities that can be exploited by cyber attackers to steal valuable data and cause mayhem.

Our customers include the largest financial institutions in the world, the military, major government agencies, software vendors and e-commerce providers. Our customers rely on us to provide the most complete set of capabilities for SSA in the market today.

Responsibilities

The responsibilities of a Software Security Consultant are broad and may vary depending on your level of experience and skills. Responsibilities include but are not limited to:

• Scanning customer source code, auditing results with development and/or security teams and offering plans for remediation of vulnerabilities.

• Installing and configuring Fortify products onsite for customers

• Communicating technical application security concepts to customer staff including developers, architects, and managers.

• Training customer staff on application security and Fortify's products.

• Assessing and scoping of customer's application security needs.

• Contributing to project planning and other project deliverables.

• Customizing the implementation of Fortify's production and test products.

• Collaborating with Product Management and Engineering to enhance products.

• Represent Fortify's technical, business, and professional values to customers, partners, and peers.

• Work is conducted mostly at customer sites; extensive travel is required.

Education and Experience Required:

Technical Qualifications

The ideal candidate should have:

• A Technical Bachelor's degree is required.

• 7+ years experience in role of software or security consulting.

• 7+ years experience in software development using Java, Microsoft .NET (C# or VB), or C/C++.

• Experience using build tools (e.g. ant, make, maven, msbuild, nant, etc.).

• Experience in developing and/or deploying web applications is strongly desired.

• Experience with multiple operating systems is strongly desired.

• Fundamental understanding of software, computer, and network architectures.

• Experience in the enterprise security or application security is a plus.

• CISSP, CISA, CCP MCP/MCSE and SANS certifications are a plus.

Characteristics

The ideal candidate will:

• Be highly motivated, competitive, entrepreneurial and attracted to challenging opportunities.

• Have demonstrated the ability to work in a fast-paced environment where organizational skills are essential and will have strong problem solving, analytical, interpersonal, and ownership skills.

• Possess excellent collaboration skills with a wide variety of internal team members.

• Be an intelligent, self-starting, self-confident individual with integrity and accountability.

• Possess strong written and verbal communication skills as well as presentation skills.

• Qualify for a security clearance.

Critical Competencies to Drive Business Results:

Strategy Operationalization & Implementation

Establishes and drives the operationalization and execution of HP's business vision, strategy and direction

Cost and Budget Management

Establishes, tracks and enforces spending parameters to protect HP's business assets, and ensure their effective engagement

Program Coordination

Coordinates day-to-day activities to meet project/program requirements

Engagement Resourcing & Optimization

Applies understanding of opportunity requirements to resource, manage & optimize engagements efficiently and cost-effectively

Coaching/Supervision

Assesses and manages employee performance to ensure individual and group excellence

Financial/Business Acumen

Exhibits authoritative business and financial acumen to develop meaningful business or operational recommendations

HP Partner Resources

Effectively accesses appropriate partner resources associated with a solution and guiding account strategy

HPS/BU Business Context

Understands the market segments sold into, the business challenges addressed by HP Services (HPS)/Business Unit (BU) solutions, and HP's strategy for market penetration

HPS/BU Solutions

Understands HPS/BU solutions in area-of-responsibility- what they consist of, product roadmaps, key technology concepts, and the competitive landscape in which they are sold

HPS Solution Interfaces

Understands how services in area-of-responsibility fit within or interface with the sales of other solutions - HPS, other Global/General Business Unit (GBU)s, or HP's partner strategies

Change Management

Develops methods for supporting innovation and change across the organization

Problem Solving

Approaches problems in a rational manner using sound strategies that ensure comprehensive understanding and effective resolution

Qualified candidates should submit their resume to Patrick Riley