Application Security Engineer

Job not on LinkedIn

November 20

Apply Now

Receive Emails with Similar Jobs

ISC2

WebsiteLinkedInAll Job Openings

Cybersecurity • Education • SaaS

ISC2 is a leading organization dedicated to advancing cybersecurity education and certification. They provide various programs for individuals at different stages of their cybersecurity careers, including certification exams, training resources, and leadership development opportunities. ISC2 also advocates for members and promotes diversity within the cybersecurity field by empowering professionals and communities.

201 - 500 employees

Founded 1989

🔒 Cybersecurity

📚 Education

☁️ SaaS

📋 Description

• Facilitate technical design reviews, perform code analysis, and offer remediation recommendations • Perform manual and dynamic security testing, documenting and presenting findings • Work closely with Development, Release, and QA teams • Act as a DevSecOps Engineer responsible for secure application delivery • Provide security risk assessments, create threat models, and assist with vulnerability testing • Participate in the Incident Response team and act as a Subject Matter Expert when dealing with cyber incidents • Conduct security assessments including static code analysis, dynamic application testing, and penetration testing • Establish and maintain a vulnerability management program for applications • Develop and maintain automated security testing tools and scripts • Conduct security training and awareness programs • Ensure compliance with relevant security standards and regulations

🎯 Requirements

• Bachelor's degree in computer science, information systems, related engineering field • Will consider a high school diploma and 10+ years of relevant work experience, as well as current additional credentials (CCSP, GDSP, etc..) in lieu of a degree • A CISSP and CSSLP are required for this position • 8+ years of experience in Information Security • 8+ years of experience with static and dynamic analysis for coding and vulnerability identification and remediation • 5+ years of Secure Development experience • Application Experience with implementing Secure Development Lifecycle in an agile environment • First-hand experience with architectural reviews, application reviews, and penetration testing • Application Experience with Continuous Integration processes, particularly with building security practices into the pipeline

🏖️ Benefits

• Health insurance • 401(k) matching • Flexible work hours • Paid time off • Remote work options