We are looking for an experienced IT Security Tester to join our team. Experience with Fortify is a must. We are ideally looking for someone based in Johannesburg, but we will consider someone who can work remotely as well. If you are interested in a new and exciting opportunity, please get in contact.
Relevant IT Qualification
Location: Johannesburg (or remotely from within South Africa)
- Minimum of 2 years experience with security testing using Fortify (or similar technologies)
- Run static and dynamic security testing using Fortify (SCA and WebInspect)
- Manage security risks on SSC
- Apply security testing on Web, Portals and Mobile Apps
- Design Security test processes, testing document template for security reporting (Test Plans, Test sign-off report, Execution report)
- Use Jenkins to schedule security scans
- Document security requirements on net/ALM Octane and store execution results
- Ability to remove false positives on the security risks.
- Ability to interpret vulnerabilities and propose ways to developers to resolve risks
- Work with security team to facilitate reviews and approval of the security tests
- Work with the development teams to source code repositories, etc. for code scanning
- Able to work on the cross functional structure. As the tester will need to report to the testing technical lead as well as security team
- Draw up maturity level in order to move current Security testing capability to at least level 4