We are seeking an intermediate security engineer who is passionate about Application Security and has about 3 years of experience with any combination of the following: web and mobile application security, threat modeling, attack surface reduction, browser security, database security, file security, and secure software development. Should have knowledge of web application attacks and defense strategies including those found in the OWASP Top 10 and mobile Top 10. (more…)
The Lead Application Security Engineer is responsible for promoting, guiding, designing, and evaluating the effective use of application security controls in all phases of the application life cycle.
Essential Job Functions: Evaluate applications for appropriate and effective use of security controls using tools and techniques such as source code analysis, vulnerability scanners, and manual testing techniques. Serve as the practice lead for software security assessments by prioritizing assessment work, coordinating and delegating activities, reviewing work products to ensure quality and consistency, and providing thought leadership to the team. Prepare and deliver written and verbal communications in a professional and persuasive manner to internal and external technology and business stakeholders. This may include status briefings, security assessment reports and notifications, policies/standards/processes, etc. (more…)
