• Snapboard
  • Activity
  • Reports
  • Campaign
Welcome ,

Chat with the recruiter

...Minimize

Hey I'm Online! Leave me a message.
Let me know if you have any questions.

Mid Security

In United States

Save this job

Mid Security   

Click on the below icons to share this job to Linkedin, Twitter!

JOB TITLE:

Mid Security

JOB TYPE:

JOB SKILLS:

JOB LOCATION:

Washington United States

JOB DESCRIPTION:

Basic Purpose:

  • To drive integrating security seamlessly into the Software development lifecycle, the Application Security Engineer will serve as a technical resource working with Technical implementation teams. This individual will collaborate with teams to determine security requirements and support all phases of integration, operations, and maintenance to ensure a secure software environment. They will be able to work independently or in a team environment.

Responsibilities:

  • Provide guidance on secure coding practices and security design based on current knowledge of security threats and vulnerabilities that could impact the technology stack
  • Support definition of Secure SDLC standards to include security architecture, design and coding requirements for infrastructure, application, and data to align with application security maturity model and adopt a shift-left approach for security.
  • Work independently with various application security tools including SAST, DAST, SCA, IAST, and Pen Testing and operationalize security tools for integration with CI/CD.
  • Explains and interprets the vulnerability report results to development staff.
  • Develop security controls and processes for products and services developed and deployed for both on-prem and cloud environments.
  • Perform vulnerability replication, threat modeling, and triage findings to improve the application security posture and have right controls.
  • Provide security related coaching and expertise to drive and elevate security expertise within the development teams
  • Work on security Tools day-to-day administration and automation using scripting.

Qualifications and Education Requirements:

  • Bachelors Degree in IT related or the equivalent combination of education, training or experience
  • 3-4 years of experience in the field of cybersecurity pen-testing and application security
  • Good knowledge in security best practices, principles and commonly used security frameworks such as OWASP, NIST and HIPAA
  • Hands-on experience in software coding in Java/Python/ .Net/scripting languages
  • Knowledge of secure architecture and design patterns for Web, Application and Microservices
  • Knowledge of current and emerging threats and techniques for exploiting security vulnerabilities
  • Good experience/exposure to securing cloud, cloud native application infrastructure and applications. Creating custom automation scripts and reports
  • Advanced organizational, planning and time management skills, ability to work in fast paced environment. Ability to learn new technologies.
  • Advanced communication, presentation and analytical skills
  • Desired: CISSP, CISM or other related Information Security certifications

 

Position Details

POSTED:

Sep 29, 2022

EMPLOYMENT:

INDUSTRY:

SNAPRECRUIT ID:

S16570656603566348

LOCATION:

United States

CITY:

Washington

Job Origin:

OORWIN_ORGANIC_FEED

A job sourcing event
In Dallas Fort Worth
Aug 19, 2017 9am-6pm
All job seekers welcome!

Mid Security    Apply

Click on the below icons to share this job to Linkedin, Twitter!

<p><span style="text-decoration:underline;"><strong>Basic Purpose</strong></span>:</p> <ul> <li>To drive integrating security seamlessly into the Software development lifecycle, the Application Security Engineer will serve as a technical resource working with Technical implementation teams. This individual will collaborate with teams to determine security requirements and support all phases of integration, operations, and maintenance to ensure a secure software environment. They will be able to work independently or in a team environment.</li> </ul> <p><span style="text-decoration:underline;"><strong>Responsibilities</strong></span>:</p> <ul> <li>Provide guidance on secure coding practices and security design based on current knowledge of security threats and vulnerabilities that could impact the technology stack</li> <li>Support definition of Secure SDLC standards to include security architecture, design and coding requirements for infrastructure, application, and data to align with application security maturity model and adopt a shift-left approach for security.</li> <li>Work independently with various application security tools including SAST, DAST, SCA, IAST, and Pen Testing and operationalize security tools for integration with CI/CD.</li> <li>Explains and interprets the vulnerability report results to development staff.</li> <li>Develop security controls and processes for products and services developed and deployed for both on-prem and cloud environments.</li> <li>Perform vulnerability replication, threat modeling, and triage findings to improve the application security posture and have right controls.</li> <li>Provide security related coaching and expertise to drive and elevate security expertise within the development teams</li> <li>Work on security Tools day-to-day administration and automation using scripting.</li> </ul> <p><span style="text-decoration:underline;"><strong>Qualifications and Education Requirements</strong></span>:</p> <ul> <li>Bachelors Degree in IT related or the equivalent combination of education, training or experience</li> <li>3-4 years of experience in the field of cybersecurity pen-testing and application security</li> <li>Good knowledge in security best practices, principles and commonly used security frameworks such as OWASP, NIST and HIPAA</li> <li>Hands-on experience in software coding in Java/Python/ .Net/scripting languages</li> <li>Knowledge of secure architecture and design patterns for Web, Application and Microservices</li> <li>Knowledge of current and emerging threats and techniques for exploiting security vulnerabilities</li> <li>Good experience/exposure to securing cloud, cloud native application infrastructure and applications. Creating custom automation scripts and reports</li> <li>Advanced organizational, planning and time management skills, ability to work in fast paced environment. Ability to learn new technologies.</li> <li>Advanced communication, presentation and analytical skills</li> <li>Desired: CISSP, CISM or other related Information Security certifications</li> </ul> <p> </p>


Please wait..!!