Sr. Application Security Engineer / Developer
Perform application security assessments as part of the security program of the application.
· Guide and perform security activities including vulnerability testing and analysis, code review, and static and dynamic code testing · Communicate application security program fundamentals and processes, and act as a consultative partner with the business/developer teams · Participate in security projects and collaborate with IT peers to implement security tools and processes · Conduct internally performed risk assessments, penetration tests, and intrusion attempts; provide responses and action plans to external security assessments · Participate in IT projects, providing security reviews and remediation recommendations based on industry standards. · At a minimum, you'll need: · Bachelor's degree or equivalent experience · GPEN, GWAPT, OSCP, or similar certification · 5 years of experience in corporate IT security · 2 years of experience in application security testing · Knowledge in application technology security testing (white box, black box, and code review). · Experience with advanced automation scripting and automated testing tools • Proficiency in Microsoft Office Suite and Windows OS, and familiarity with Linux systems; ability to quickly learn new software applications · Ability to read and work with programming languages with emphasis on C#, Java, JS, and HTML · It'd be great if you also have: • Experience with PHP, .NET, and other web app languages • CISSP certification • Ability to perform complex analysis of data, processes/and or systems; produce unambiguous, comprehensive, and accurate interpretations | ||||||