Secure Applications and Products
We are seeking a dedicated and experienced Senior Application Security Engineer to join our Global Enterprise Security Team.
You will work with a dynamic group of professionals supporting our global business that spans multiple continents, playing a crucial part in safeguarding applications from potential threats and vulnerabilities.
Your strong analytical skills and deep understanding of modern security protocols and tools will be essential in identifying and mitigating risks early in the development lifecycle.
You will conduct thorough security assessments, implement robust security measures, and ensure compliance with industry standards.
The ideal candidate will have a strong background in application security experience, CI/CD processes, and associated tooling, as well as extensive experience with SAST & DAST application scanning tools and knowledge of OWASP methodologies.
Responsibilities include integrating SAST tooling into CI/CD pipelines, providing tailored SAST integration support for development teams, analyzing application logs for anomalous patterns, participating in on-call rotation in support of WAF incidents, and facilitating activities such as blue/red team events and bug bounty programs.
The role requires excellent communication skills to create documentation, videos, and conduct training classes, as well as the ability to manage multiple tasks simultaneously and meet established deadlines.
A degree in a relevant field is required, and a CISSP certification is preferred but not required.
We provide equal employment opportunities to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.
* About This Opportunity
* This position offers a unique chance to make a meaningful impact on our company's security posture.
* Key Responsibilities
* Integrate SAST tooling into CI/CD pipelines to ensure compatibility and efficient scanning within development workflows.
* Analyze application logs for anomalous patterns and communicate findings to leadership.
* Participate in on-call rotation in support of WAF incidents.
* Facilitate activities such as blue/red team events and bug bounty programs.
Benefits
* Health and dental insurance.
* Meal and restaurant vouchers.
* A fixed monthly stipend for internet and mobile expenses.
* A company-issued device.
Qualifications
* 5+ years of application security experience.
* Strong background with CI/CD processes and associated tooling.
* Extensive experience with SAST & DAST application scanning tools and knowledge of OWASP methodologies.
* Application security experience with high-level programming languages.
* Experience with Container technologies - Docker, Docker Swarm, Kubernetes.
* Experience with Cloud Service Providers (Azure and/or AWS).
* Knowledge of Web Application Firewalls (WAF).
Education & Certifications
* Education: Associate Degree, or Technologo Degree, or higher is required.
* A CISSP certification is preferred but not required.
About Us
We provide equal employment opportunities to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.