At TriZetto, we know that a company is nothing without its associates. That’s why we strive to attract and keep the best in the business. To do that, we’ve created a culture that values, rewards, and nurtures the people who make TriZetto run. We offer our associates a number of opportunities to further develop their career, including Associate Professional Development, Leadership Development Program, and TriZetto Academy. It’s our way of investing in the future of our associates and in the future of TriZetto.
TriZetto is a part of Cognizant Technology Solutions, a global leader in information technology, consulting and business process services. Being part of this team means joining a group of passionate people who are on a mission to build smart solutions for better healthcare. We are devoted to our clients and we work together as a team in an environment that is both challenging and rewarding. We provide the opportunities, challenges, and support to be the driver of your way forward, no matter your level. You can be both an idea and an action person.
- Position will ideally be located in Phoenix, AZ (Chandler) OR Denver, CO (Englewood).
Position Summary: Responsible for working with existing application teams to identify and remediate software security issues. This includes issues within the code, including identification of false-positive issues and implementing code corrections. In addition, this person will provide expertise in secure software design, the use of various security evaluation tools such as HP Fortify and Qualys, and the implementation of Security Risk Assessment, Threat Modeling and Attack Surface Review processes.
The selected candidate will possess the following skills:
- A strong knowledge of software security remediation processes, including correcting existing software vulnerabilities, performing penetration testing and fuzz testing, etc.
- Demonstrated expertise in conducting Security and Privacy Risk Assessments, Threat Modeling and Attack Surface reviews.
- Demonstrated expert proficiency using appropriate tools, platforms, languages, and application programs; proficient knowledge of third party products appropriate to the department; and basic knowledge of environmental management.
- A strong knowledge of Software Development Life Cycle best practices including CI, AUT and code review processes; experience in a SCRUM environment preferred.
- In‐depth knowledge of software development including the utilization of: C#, VB.Net, ASP.Net, JavaScript, Java, Angular.JS, TypeScript, and experience working with HTML and CSS.
Responsibilities Include:
- Helping current application teams remediate existing security issues in current TriZetto applications, through both architectural design and direct coding tasks. TriZetto software applications are designed for the healthcare industry to use.
- Serving as an Expert Resource in evaluating and resolving security issues identified by static code scans and dynamic application scans.
- Working with the Security Group and application teams to:
- Implement security remediation into their SDLC, including:
- Final Security Reviews and Release Security Certification
- Performing recurring Threat Modeling of existing and future applications
- Performing recurring Attack Surface reviews of existing and future applications
- Performing recurring Fuzz Testing of existing and future applications
Qualifications Include:
- Bachelor's degree in Computer Science, Information Systems, Engineering, Mathematics or a related discipline. An equivalent combination of education and work experience may be taken into consideration in lieu of a degree.
- Minimum of 5 years of work experience in the software and/or IT industry, 6-10 years preferred.
- 3+ years working in the Software Security arena.
- Proven Software Security experience, especially identifying and remediating OWASP Top 10 security issues.
- Experience with HP Fortify, Qualys and/or IBM AppScan.
- Experience with Penetration Testing and Fuzz Testing tools preferred.
- Software development experience that includes: C#, VB.Net, and/or ASP.Net.
- Experience with JavaScript, Angular.JS and TypeScript a plus.
- Java experience a plus.
- Experience with Web Services, Authentication, ASP.Net using OWIN, SignalR and HTML5 preferred.
- Experience delivering software utilizing Agile and Scaled Agile Framework methodologies preferred.
- Proficiency with Microsoft Office applications including Word, Excel and PowerPoint.
- Good written and verbal communication skills.
- Some travel to other development centers will be required (< 50%).
We do not tolerate discrimination against any applicant on the basis of gender, sexual orientation, race, religion, national origin, ethnicity, veteran status, disability or age. It is TriZetto’s policy to encourage diversity in hiring, recognizing that this enriches the work environment for all TriZetto associates and that a broad variety of perspectives enhances decision-making and creativity.
TriZetto is an Equal Opportunity Employer Minority/Female/Disability/Veteran. If you require accessibility assistance applying for open positions in the US please send an email with your request to Recruiter@trizetto.com. (3)
#LI-LS1
#DI
TriZetto is a part of Cognizant Technology Solutions, a global leader in information technology, consulting and business process services. Being part of this team means joining a group of passionate people who are on a mission to build smart solutions for better healthcare. We are devoted to our clients and we work together as a team in an environment that is both challenging and rewarding. We provide the opportunities, challenges, and support to be the driver of your way forward, no matter your level. You can be both an idea and an action person.
- Position will ideally be located in Phoenix, AZ (Chandler) OR Denver, CO (Englewood).
Position Summary: Responsible for working with existing application teams to identify and remediate software security issues. This includes issues within the code, including identification of false-positive issues and implementing code corrections. In addition, this person will provide expertise in secure software design, the use of various security evaluation tools such as HP Fortify and Qualys, and the implementation of Security Risk Assessment, Threat Modeling and Attack Surface Review processes.
The selected candidate will possess the following skills:
- A strong knowledge of software security remediation processes, including correcting existing software vulnerabilities, performing penetration testing and fuzz testing, etc.
- Demonstrated expertise in conducting Security and Privacy Risk Assessments, Threat Modeling and Attack Surface reviews.
- Demonstrated expert proficiency using appropriate tools, platforms, languages, and application programs; proficient knowledge of third party products appropriate to the department; and basic knowledge of environmental management.
- A strong knowledge of Software Development Life Cycle best practices including CI, AUT and code review processes; experience in a SCRUM environment preferred.
- In‐depth knowledge of software development including the utilization of: C#, VB.Net, ASP.Net, JavaScript, Java, Angular.JS, TypeScript, and experience working with HTML and CSS.
Responsibilities Include:
- Helping current application teams remediate existing security issues in current TriZetto applications, through both architectural design and direct coding tasks. TriZetto software applications are designed for the healthcare industry to use.
- Serving as an Expert Resource in evaluating and resolving security issues identified by static code scans and dynamic application scans.
- Working with the Security Group and application teams to:
- Implement security remediation into their SDLC, including:
- Final Security Reviews and Release Security Certification
- Performing recurring Threat Modeling of existing and future applications
- Performing recurring Attack Surface reviews of existing and future applications
- Performing recurring Fuzz Testing of existing and future applications
Qualifications Include:
- Bachelor's degree in Computer Science, Information Systems, Engineering, Mathematics or a related discipline. An equivalent combination of education and work experience may be taken into consideration in lieu of a degree.
- Minimum of 5 years of work experience in the software and/or IT industry, 6-10 years preferred.
- 3+ years working in the Software Security arena.
- Proven Software Security experience, especially identifying and remediating OWASP Top 10 security issues.
- Experience with HP Fortify, Qualys and/or IBM AppScan.
- Experience with Penetration Testing and Fuzz Testing tools preferred.
- Software development experience that includes: C#, VB.Net, and/or ASP.Net.
- Experience with JavaScript, Angular.JS and TypeScript a plus.
- Java experience a plus.
- Experience with Web Services, Authentication, ASP.Net using OWIN, SignalR and HTML5 preferred.
- Experience delivering software utilizing Agile and Scaled Agile Framework methodologies preferred.
- Proficiency with Microsoft Office applications including Word, Excel and PowerPoint.
- Good written and verbal communication skills.
- Some travel to other development centers will be required (< 50%).
We do not tolerate discrimination against any applicant on the basis of gender, sexual orientation, race, religion, national origin, ethnicity, veteran status, disability or age. It is TriZetto’s policy to encourage diversity in hiring, recognizing that this enriches the work environment for all TriZetto associates and that a broad variety of perspectives enhances decision-making and creativity.
TriZetto is an Equal Opportunity Employer Minority/Female/Disability/Veteran. If you require accessibility assistance applying for open positions in the US please send an email with your request to Recruiter@trizetto.com. (3)
#LI-LS1
#DI