Identify Security on TwitterIdentify Security on FacebookIdentify Security on LinkedImIdentify Security Blog RSS Feed

Application Security Engineer/Specialist

You’ll play a key role in partnering with Application Development teams to drive secure coding practices, requirements, and remediation for new and existing development efforts. This role will focus on ensuring that Applications and Websites developed at our client are deployed and maintained in a secure manner and expanding the Application Security program. This position includes but is not limited to the use of Static and Dynamic code analysis solutions, integration into development lifecycle management, and secure code education and training.

Required Experience:

3

+ Years
Job Locations:

Bloomington, IL | Minneapolis, MN | Atlanta, GA

Location Restrictions:

Onsite

Basic Qualifications and

The person in this role researches general and industry specific security trends. Analyzes and defines application security policies and secure development standards. Provides Application Security expertise and information to project and development teams. Creates and presents application security reports, policies, results and deliverables. Coordinates and conducts secure code scanning and analysis, including the delivery and explanation of results. Evaluates, documents and communicates ratings and mitigation guidelines.

Responsibilities
  • Participates in projects and assessments on risk.
  • Analyzes and defines security policies and standards.
  • Monitors, alerts and responds to security events.
  • Performs computer forensic and investigative activities; and penetration and vulnerability testing.
  • Defines and administers identity and access roles and workflows.
  • Develop and communicate secure application development standards.
  • Build relationships with Application Developers and other Stakeholders.
  • Drive expansion of secure code scanning and analysis solutions.
  • Aid Development personnel in understanding and mitigation of secure code deficiencies.
  • Create and deliver reports and metrics for identified security deficiencies.

Required Skills and Experience
  • Bachelor's Degree in Computer Science or related field and 5 years professional experience working in an Information Security Program.
  • Experience identifying, rating, and mitigating secure code deficiencies for applications and websites.
  • In-depth Understanding of Application Security Vulnerabilities and Standards (OWASP).
  • Experience with Secure Code Analysis and Scanning solutions, Automation, and Integration into development processes.
  • Excellent communication skills both written and verbal across all organizational levels.
  • Experience in software development of applications and websites.
  • Understanding of Application Security Vulnerabilities and Standards (OWASP).
  • Understanding of Secure Code Analysis and Scanning solutions.
  • Critical thinking and troubleshooting skills.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.

Interested in this position?
Fill out the form below!