Description

We are seeking a talented and experienced Application Security Engineer to join our dynamic team in the Information Technology and Services industry. As an Application Security Engineer, you will play a critical role in safeguarding our company's applications and protecting sensitive information from potential threats. In this exciting position, you will have the opportunity to proactively identify and solve security vulnerabilities, as well as shape and enforce best practices for secure coding and application development.

Responsibilities

• Work closely with cross-functional teams to perform security assessments and identify vulnerabilities in our applications
• Design and implement security measures to protect our applications from unauthorized access, attacks, and data breaches
• Conduct regular security audits and penetration testing to identify potential weaknesses and recommend remedial actions
• Develop and maintain security policies, standards, and procedures to ensure compliance with industry best practices and regulatory requirements
• Collaborate with development teams to integrate security controls and mechanisms throughout the software development lifecycle
• Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to continuously improve our security posture
• Provide training and guidance to development teams on secure coding practices and application security

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field
• Proven experience in application security, with a focus on web and mobile applications
• Strong knowledge of application security principles, techniques, and best practices
• Experience in conducting security assessments, vulnerability scanning, and penetration testing
• Familiarity with secure coding practices and techniques, such as OWASP Top 10 and SANS Top 25
• Knowledge of common web application frameworks (e.g., Angular, React, Spring), programming languages (e.g., Java, Python, JavaScript), and related technologies
• Understanding of network protocols, encryption, firewalls, and intrusion detection systems
• Excellent problem-solving and troubleshooting skills
• Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams
• Relevant certifications, such as CISSP, CSSLP, or Offensive Security Certified Professional (OSCP), are a plus