Security Engineer (Application)

View full description

Requirements:

• Bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience.
• 3+ years of hands-on experience in Application Security.
• Strong understanding of Application Security concepts, such as secure coding practices and vulnerability management.
• Hands-on experience with Application Security tools like Snyk, Burp Suite, and DefectDojo.
• Proficiency in scripting languages like Python and Bash.
• Experience with security testing tools including SAST, DAST, SCA, and penetration testing.
• Knowledge of common security frameworks and standards like NIST, CIS, and COBIT.
• Strong communication and interpersonal skills.
• Critical and strategic problem-solving skills.

Responsibilities:

• Design, implement, and maintain the security aspects of Sword’s applications to ensure security and compliance.
• Monitor applications for security threats and respond promptly to incidents.
• Perform root cause analyses and incident reviews.
• Prioritize application risks and delegate patches to responsible teams.
• Collaborate with the development team to integrate security into the software development lifecycle.
• Manage preventative security measures and services related to Sword’s SSDLC.
• Analyze security logs to detect and respond to incidents.
• Stay updated on security threats and provide risk mitigation guidance.
• Integrate or build security tools for ecosystem monitoring.