Are you passionate about protecting sensitive information and ensuring the security of technology systems? As an Application Security Engineer, you will play a crucial role in safeguarding our organization's assets from cyber threats.
Job Description
In this position, you will be responsible for designing and implementing secure application development processes. Your focus will be on preventing vulnerabilities and ensuring the overall security posture of our applications.
You will work closely with developers to embed static application security testing (SAST), software composition analysis (SCA), infrastructure as code scanning (IAC), and dynamic application security testing (DAST) within CI/CD pipelines. Additionally, you will tune risky configuration detection policies and prescribe codifiable guardrails for secure cloud infrastructure configurations.
Your expertise will help us build repeatable security requirements into codifiable engineering patterns using a security-as-code approach. You will also support the management of vulnerability disclosure programs and develop processes to manage findings.
* Design and implement secure application development processes.
* Embed SAST, SCA, IAC, and DAST within CI/CD pipelines.
* Tune risky configuration detection policies and prescribe codifiable guardrails for secure cloud infrastructure configurations.
* Build repeatable security requirements into codifiable engineering patterns using a security-as-code approach.
* Support the management of vulnerability disclosure programs and develop processes to manage findings.