Application Security Cover Letter

Please consider me for the application security opportunity. I am including my resume that lists my qualifications and experience.

Previously, I was responsible for solutions that follow the OWASP specification to get clearance from Office of Information Security (OIS).

Please consider my experience and qualifications for this position:

• Reduction in cost base
• B.E Computer Science/Information Systems or related field
• Knowledge of authentication mechanisms like SAML, OAuth
• In-depth understanding of application related vulnerabilities and their mitigation methods
• In-depth knowledge of web security principles and attack vectors
• Knowledge of software design, software, network architecture, protocols, and standards
• Experience designing and implementing application security methods
• Middleware security controls for application servers, container security, session management, and encryption key stores

I submit this application to express my sincere interest in the application security position.

In my previous role, I was responsible for highly polished and brand compliant web and mobile based user experiences across brands and/or regions for:.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Knowledge of technical security architecture principles
• Current DoD Top Secret clearance with SCI access
• Experience working within software development preferred
• Knowledge of common security vulnerabilities such as OWASP Top 10, SANS Top 25
• Knowledge of software design, server, software, and network architecture, protocols, and standards
• Bachelor or Master in Computer Science
• Expert level knowledge of modern web technologies (AngularJS, Node.js, websockets)
• Identity and access management expertise, SSO/SAML

Please consider me for the application security opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for secure software development training (OWASP) opportunities to applications development team members.

Please consider my experience and qualifications for this position:

• AS 400 iSeries, web technologies and web application development and OWASP Top 10, Worldwide Web Consortium (W3C), Cloud Security Alliance (CSA), Web Application Consortium (WASC), Common Weakness Enumeration (CWE) / SANS Top 25 Software Weakness Types
• Secure Software Development Life Cycle (SDLC), related standards and frameworks, and legal requirements for information protection
• Experience reviewing code for vulnerabilities in Java, C#, Javascript/jQuery, Adobe Flash/ActionScript
• Knowledge of white hat hacker tools such as Fiddler, Paros, Burp, Sqlmap, Nikto, Nmap, Wireshark etc and source code analyzers
• Familiarity in application security scanning technologies such as static application security testing (SAST), dynamic application security testing (DAST), single sign-on, and encryption
• Available for on-call duty when necessary
• Broad knowledge of, and experience in, fundamental information security concepts
• Deep knowledge of common web application vulnerabilities

I would like to submit my application for the application security opening. Please accept this letter and the attached resume.

Previously, I was responsible for technical leadership in the diagnosis and resolution of issues with the development components of the web and mobile environments.

Please consider my experience and qualifications for this position:

• Experience evaluating the likelihood and impact of application vulnerabilities
• BS in Computer Science or STEM related field, preferred
• Basic understanding of networking concepts (TCP, UDP, HTTPS)
• Current DoD 8570 certification
• Familiar with IBM AppScan, HP Fortify, Sonotype, and other code assessment tools
• Experience with web application and Agile development
• Knowledge of the Open Web Application Security Project (OWASP) framework
• Understand secure web application development, Java, Java development frameworks, Hypertext Preprocessor (PHP), web services, and Simple Object Access Protocol (SOAP)

I am excited to be applying for the position of application security. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for guidance on existing and emerging threats in the 3rd party hosted, data services, and mobile application space as they apply within the Diageo and Distributor environment.

Please consider my experience and qualifications for this position:

• Knowledge of financial services regulatory requirements
• A willingness and eagerness to learn and grow
• Strong understanding of application frameworks and technologies including Software Development
• Familiarity with agile development processes and have experience integrating secure development practices
• Experience in describing application security coding concepts to personnel of both technical and nontechnical backgrounds
• FindBugs, HP/Fortify SCA, IBM AppScan, and HP WebInspect
• Experience with Web, Java, .NET, and Python development
• Experience promoting Continuous Delivery and a DevSecOps pipeline