8 Application Security Engineer Jobs in Cary, NC
Cynet Systems is Hiring an Application Security Engineer Near Cary, NC
Responsibilities:
- Expert development and scripting skills supporting forensics and/or application security including:
- Designing, developing, and testing custom software to ensure scanning enforcement (Python preferred).
- DOTNET to trace code and triage findings.
- Developing regular expressions (RegEx).
- Developing custom reporting dashboards (Tableau preferred).
- Auditing secret scan findings.
- Leverage TruffleHog & Checkmarx tuned for cloud secret detection and prevention
- Automating processes to ensure scanning as part of cloud on-boarding and subsequent releases.
- ThreadFix mapping.
- Compliance service reporting.
- Management reporting.
- Integrating application security within development pipeline (e.g Checkmarx, BlackDuck, TruffleHog, ThreadFix, Prisma, Akamai).
- Threat modeling.
- Adherence testing.
- DAST testing.
- Optimization of secret storage prevention rules to prevent the storage of tokens and keys in GitHub.
- Developing and testing custom C# software to evaluate compliance.
Primary:
- 8-10 years of strong Application Security experience in S-SDLC Threat Modeling, Code Review, Vulnerability Assessment, Penetration Testing.
- Web Service/API security testing, Firmware Assessment.
- Expert in Application Security process establishment.
- Thorough exposure on DevSecOps implementation/integration.
- Deep hands-on experience into Mobile application Security Android/iOS - reverse engineering/memory analysis etc.
- Security tool experience -
- Client AppScan/CheckMarx/Fortify/Nessus/MetaSploit/BlackDuck/ TruffleHog, ThreadFix/Prisma/ Akamai.
- Excellent interpersonal skill.
- Expert development and scripting skills supporting forensics and/or application security including:
- Designing, developing, and testing custom software to ensure scanning enforcement (Python preferred).
- .NET to trace code and triage findings.
- Developing regular expressions (RegEx).
- Developing custom reporting dashboards (Tableau preferred).
- Optimization of secret storage prevention rules to prevent the storage of tokens and keys in GitHub.
- Developing and testing custom C# software to evaluate compliance.
- B.E/B.Tech/Degree in preferably in computer science or information technology
- Relevant experience and certifications.
- Understand customer requirements and business priorities to effectively communicate cyber risks and threats.
- Ability to work with partners to gather requirements and provide scalable and actionable analytic responses.
- Experience in analytic techniques using primarily Open Source tools and development.
- General understanding of Linux, Windows, VM environment and Network devices across On-Prem & Cloud Native.
- Ability to work in a team environment is a must.
- Experience in working in a high bandwidth team setting.
- Shall have Excellent verbal/written communication skills.
- Shall possess excellent documentation, technical analysis report comprehension and presentation skills.
- Should be willing to work in complex environments/matrix organization.
- Should be willing to work in a 24x7 environment.
- Incumbent should carry continual system improvement mindset and be able to demonstrate in work.
Job Summary
Full Time
$102k-125k (estimate)
06/22/2024
07/09/2024
cynetsystems.com
ARCOLA, VA
500 - 1,000
2010
ASHWANI MAYUR
$50M - $200M
IT Outsourcing & Consulting
Related Companies
The following is the career advancement route for Application Security Engineer positions, which can be used as a reference in future career path planning. As an Application Security Engineer, it can be promoted into senior positions as a Technical Solution Consultant IV that are expected to handle more key tasks, people in this role will get a higher salary paid than an ordinary Application Security Engineer. You can explore the career advancement for an Application Security Engineer below and select your interested title to get hiring information.
