Senior Application Security Engineer
We are seeking a dedicated and experienced Senior Application Security Engineer to safeguard our applications from potential threats and vulnerabilities.
This role involves working with a dynamic group of professionals dispersed across North and South America, supporting our global business that spans 5 continents.
You will play a crucial part in conducting thorough security assessments, implementing robust security measures, and ensuring compliance with industry standards.
Your strong analytical skills and deep understanding of modern security protocols and tools will be essential in identifying and mitigating risks early in the development lifecycle.
You will report to the Enterprise Application Security group which works closely with software development and application ownership teams across various business units to help develop more secure applications and products.
The successful candidate will have experience with CI/CD processes and associated tooling, such as Jenkins, GitHub Actions, Azure Pipelines, or similar.
Strong scripting experience - PowerShell, Python, etc. is also required, along with extensive experience with SAST & DAST application scanning tools and knowledge of OWASP methodologies.
Application security experience with high-level programming languages (e.g., Java, C, C++, C#, VB, .NET, ASP.NET, ASP, PHP, J2EE, JSP) is necessary.
Experience with Container technologies - Docker, Docker Swarm, Kubernetes, Cloud Service Providers (Azure and/or AWS), and Web Application Firewalls (WAF) is highly desirable.
You should also have experience with performing web, API, and mobile manual penetration testing; preparing reports to document findings; and presenting the report to development teams.
Familiarity with regulatory controls and industry best practices such as HIPAA, PCI, HiTrust, NIST etc. is also required.
Able to manage multiple tasks simultaneously and meet established deadlines, collaborate with IT teams on security-related tasks and projects, and work productively while remote and communicate effectively in a virtual team environment.
Able to stay current with new technology, creating documentation, videos and conducting training classes.
Please note that InComm Payments provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin, citizenship, veteran's status, age, disability status, genetics or any other category protected by federal, state, or local law.