Application Security Engineer II

New

USAFull-TimeMiddle

Salary89,300 - 130,000 USD per year

Apply NowOpens the employer's application page

Job Details

Experience: 5 years in software development with security focus, systems/software security testing, and/or security administration
Required Skills: GraphQLAzureRESTful APIs

Bachelor’s Degree in an IT-related field or equivalent work experience.
5 years of experience in software development with a security focus, systems/software security testing, or security administration.
High proficiency in programming/scripting automations and processing API results.
Medium proficiency in providing security guidance and implementation steps to software development teams.
Medium proficiency implementing security technologies within the application security suite.
In-depth knowledge of web application vulnerabilities, OWASP recommendations, and mitigation strategies.
Medium proficiency in understanding network and software architectures.
High proficiency in using proxy tools like Burp Suite or ZAP for manual validation.
High proficiency in end-to-end application testing including API, logic flows, database, GraphQL, Windows networks, Linux applications, and Azure cloud.
High proficiency in Static Code Analysis tools and pipeline integrations.
Medium proficiency in WAF technology and runtime protection concepts.
Must maintain a designated home office with a minimum internet speed of 50 Mbps down/10 Mbps up.

Perform day-to-day information security functions.
Assist with documentation of improvements, including automation, of information security solutions in concert with DevSecOps activities.
Deploy and/or serve as product owner for at least one product within the application security stack.
Assist with administration of security systems including testing software, WAFs, and vulnerability management tools.
Coordinate security issue remediation efforts between various scrum teams.
Act as the primary point of contact for scrum teams regarding vulnerabilities and remediation options.
Maintain updated documentation of technical controls, processes, and procedures.
Participate in incident response, security testing, penetration testing, and red teaming roles.

View Full Description & ApplyYou'll be redirected to the employer's site