Application Security Engineer
New
Remote – US OnlyFull-TimeMiddle
Salary125,600 - 172,700 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 7 years
- Required Skills
- AWSPythonAzureRESTful APIsPostman
Requirements
- Bachelor’s Degree.
- 7 years of experience in application security.
- 3 years of experience administering, running, and analyzing DAST tools.
- Knowledge of AWS or Azure cloud environments.
- Familiarity with industry-standard compliance programs (NIST, HITRUST, FedRAMP).
- Experience developing or testing RESTful APIs.
- Understanding of Postman and/or Swagger files.
- Proficiency with Python for automation scripting.
- Ability to obtain and maintain a Public Trust clearance.
Responsibilities
- Operate and enhance application security tool environments.
- Author automation scripts for reoccurring tasks.
- Setup and execute authenticated and unauthenticated DAST scans against web applications and APIs.
- Tune scanning profiles to reduce false positives and improve detection accuracy.
- Validate DAST findings to confirm exploitability and business impact.
- Prioritize vulnerabilities using OWASP Top 10 and risk-based methodologies.
- Partner with development and platform teams to explain findings and remediation expectations.
- Maintain accurate vulnerability records and track remediation progress.
- Ensure software applications meet security guidelines and compliance standards such as HIPAA, SOC II, GDPR, NIST 800-53, and FedRAMP.
View Full Description & ApplyYou'll be redirected to the employer's site