Application Security Engineer II – Night Shift

Job not on LinkedIn

November 12

Apply Now

Receive Emails with Similar Jobs

Rackspace Technology

WebsiteLinkedInAll Job Openings

SaaS • Cloud

Rackspace Technology is a leading provider of managed cloud services, offering a comprehensive range of cloud and application solutions. The company specializes in helping businesses increase efficiency and reliability through cloud adoption, application modernization, and data solutions, leveraging technologies such as AI, machine learning, and next-gen data platforms. They offer a full suite of services including consulting, application modernization, cloud security, and multicloud strategies, tailoring solutions to meet the specific needs of sectors such as healthcare, financial services, and public utilities. Rackspace Technology is known for its expertise in navigating complex cloud environments and providing advanced managed services to optimize performance and ensure compliance.

5001 - 10000 employees

Founded 1998

☁️ SaaS

📋 Description

• Support Rackspace's application security program by implementing and maintaining security testing capabilities • Assist with application penetration testing and support our bug bounty program • Work closely with development teams to identify, report, and help remediate security vulnerabilities across our application portfolio • Execute application security testing using both automated tools and manual testing techniques • Configure, maintain, and operate SAST, DAST, and other application security testing tools • Analyze and triage security findings, documenting clear remediation guidance for development teams • Support the vulnerability reporting process and track findings through to resolution • Assist with triage and validation of external vulnerability disclosures and bug bounty reports • Help track and report metrics for application security program health • Collaborate with development and DevOps teams to integrate security into CI/CD pipelines

🎯 Requirements

• 2-4 years in the information security field • Experience working with application security, security testing, or DevSecOps practices • Working knowledge of the SDLC, security concepts, and vulnerability assessment methodologies • Hands-on experience with or understanding of programming and scripting languages including one or more of the following: Python, Java, Node.js, Go, Ruby, PHP; databases such as SQL; and related tools such as Github, Gitlab, Jenkins, and CircleCI • Understanding of common vulnerabilities, remediation approaches, and industry-standard classification schemes (CVE, CWE, CVSS, OWASP Top 10) • Familiarity with relevant compliance regulations, such as PCI-DSS, ISO 27001, SOC 2, or HIPAA • Passion for security and eagerness to learn about new technologies and emerging security vulnerabilities • Strong communication skills with the ability to work collaboratively across teams

🏖️ Benefits

• Equal employment opportunity • Accommodation for disabilities or special needs