The Information Security Application Analyst reports to the Manager-Information Security Operations. Application Security Analyst will review session management controls, including testing for cross-site request forgery, to ensure that web applications maintain distinct user session. In addition, test susceptibility to SQL injections, cross-site scripting and other OWASP attacks and determine relevancy of threats to the organization. Conduct assessments of web applications, servers, endpoints, databases, client-side applications and tools, and APIs. Respond to alerts, and security incidents and work with other Information Security Operations teams members to conduct internal penetration test on production applications. The right candidate is a self-starter with excellent development skills to perform duties such as, but not limited to, research and development of secure coding methodologies, providing experienced guidance pertaining to secure application development design and testing.
Minimum Qualifications Bachelors' degree in Computer Science, Information Systems Preferred
4 years of experience -Strong knowledge of OWASP Top 10 and the ability to articulate application security risks and determine threat level.
Knowledge of dynamic web application scanners is a plus, including (but not limited to) OWASP Zed Attack Proxy, Rapid7 AppSec, Kali Linux, Metasploit, BURP Suite, HP WebInspect, Qualys, or WhiteHat. Static and dynamic code assessment tools.
Web Application Firewall concepts.
RadWare, Fortify WebInspect
Tenable Security Center.
Knowledge of HIPAA Security Rule and PCI DSS.
Communication Skills Exceptional Verbal (Public Speaking)
Writing Correspondence/ Reports
Internal Number: 152098
About Harris Health System
The Harris Health System is a fully integrated healthcare system that cares for all residents of Harris County, Texas. We are the first accredited healthcare institution in Harris County to be designated by the National Committee for Quality Assurance as a Patient-Centered Medical Home, and are one of the largest systems in the country to achieve the quality standard. Our system includes 23 community health centers, five school-based clinics, a dental center and dialysis center, mobile health units, a rehabilitation and specialty hospital and two full-service hospitals.Ben Taub Hospital is a world renowned Level I Trauma Center with 586 licensed acute-care beds and provides a wide range of specialty care outpatient services. Lyndon B. Johnson Hospital is a 328 licensed bed acute-care hospital with a newly expanded Level III trauma center and a distinguished regional center for neonatal intensive care for high-risk deliveries.Harris Health is a teaching system for Baylor College of Medicine and The University of Texas Health Science Center at Houston (UTHealth). We train the next generation of healthcare providers on the latest medical procedures and technological breakthroughs.With... our fully integrated electronic medical records system, we offer patients the convenience and assurance that their medical history is accurate, safe and available when and where it is needed. Our Medical Home designation ensures that we offer a full range of preventive, specialty and acute care services for the entire family.