Application Security Engineer

Application Security Engineer

Posted 7 days ago by 1753783503

Apply
Negotiable
Outside
Remote
USA
Apply
.NET Framework Application Security Bash (Scripting Language) Burp Suite C# (Programming Language) Common Vulnerability Scoring System (CVSS) Eclipse (Software) Federal Information Processing Standards (FIPS) Generic Programming HackerOne Information Technology IT Security Architecture Java (Programming Language) JDeveloper Linux Microsoft Visual Studio NIST 800-53 Open Web Application Security Project (OWASP) Oracle JDeveloper Oracle Linux Python (Programming Language) Security Testing Selenium (Software) Software Development Unix VeraCode Web Applications

Summary: The Application Security Engineer role is focused on enhancing application security through the use of tools like Burp and Veracode. The position requires extensive experience in various security testing methodologies and programming languages. The role is fully remote and is expected to last for over 12 months. Candidates must possess a strong background in IT security and compliance standards.

Key Responsibilities:

  • Support Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite.
  • Implement enterprise-wide security controls to secure applications, systems, networks, or infrastructure services.
  • Secure enterprise web applications and ensure compliance with OWASP Top 10, CVSS, CWE, WASC, and SANS-25.
  • Navigate and troubleshoot basic website connectivity issues in Linux or UNIX environments.
  • Utilize Interactive Application Security Testing (IAST) capabilities and tools.

Key Skills:

  • 6+ years of Information Technology experience.
  • 3+ years of experience with Veracode and Burp Suite.
  • 2+ years of experience with Java, Python, .NET, or C#.
  • Experience with Eclipse, JDeveloper, or Visual Studio.
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP.
  • Experience with HackerOne, Selenium, and writing bash scripts.
  • Experience with OWASP ZAP or Burp Proxy.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Position: Application Security Engineer

Location: 100% Remote

Duration: 12+Months

Interview: Phone and Video

Job Description:

Area's of focus / mandatory skills:

  • Burp
  • Veracode

Position: Application Security Engineer

They will need to meet the following requirements. Burp and Veracode are currently the areas of focus.

  • 6+ years of Information Technology experience
  • 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode and Burp Suite
  • 2+ years of experience with Java, Python, .NET, or C#
  • 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
  • Experience with Eclipse, JDeveloper, including pipeline development, or Visual Studio
  • Experience with securing enterprise web applications and OWASP Top 10, CVSS, CWE, WASC, and SANS-25
  • Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP
  • Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues

Additional Qualifications:

  • Experience with Interactive Application Security Testing (IAST) capabilities and tools
  • Experience with HackerOne
  • Experience with Selenium
  • Experience writing bash scripts
  • Experience with OWASP ZAP or Burp Proxy
Apply
Similar Jobs
Loading data...