Set Solutions, a Trace3 company, are looking for a highly skilled Application Security Engineer to join our client. The ideal candidate will have a background in application or web development, coupled with extensive experience in identifying, mitigating, and remediating application-level vulnerabilities. This role requires expertise with tools like Checkmarx and Tenable, as well as a deep understanding of OWASP, cloud application development on Azure and AWS, and API security.
Key Responsibilities:
- Collaborate with development teams to ensure secure design, development, and deployment of applications.
- Conduct comprehensive security assessments and vulnerability testing of web applications and APIs.
- Utilize tools such as Checkmarx and Tenable to identify, assess, and remediate security vulnerabilities.
- Implement security measures to protect applications against common vulnerabilities and threats, following OWASP guidelines.
- Develop and maintain secure coding practices and conduct security training for development teams.
- Perform threat modeling, code reviews, and penetration testing to identify and address security issues.
- Ensure security is integrated into the application development lifecycle, from design to deployment.
- Work with DevOps teams to integrate security tools and practices into CI/CD pipelines.
- Stay up-to-date with the latest security trends, vulnerabilities, and technologies.
Qualifications:
- Proven experience as an application or web developer with a strong understanding of the development lifecycle.
- Excellent skills in detecting, mitigating, and remediating application-level vulnerabilities.
- Hands-on experience with security tools such as Checkmarx, Tenable, or similar.
- Expert knowledge of OWASP guidelines and best practices.
- In-depth knowledge of application development tools and systems on Azure and AWS.
- Strong expertise in API security, including authentication, authorization, and encryption.
- Proficiency in at least one programming language (e.g., Java, C#, Python, JavaScript).
- Familiarity with security standards and frameworks (e.g., NIST, ISO 27001).
Job Type: Full-time
Pay: $110,000.00 - $125,000.00 per year
Benefits:
- 401(k)
- Dental insurance
- Health insurance
Schedule:
Experience:
- OWASP: 4 years (Preferred)
- Tenable: 1 year (Preferred)
- Vulnerability management: 4 years (Preferred)
Work Location: Remote