This site uses cookies. To find out more, see our Cookies Policy

Security Application Engineer in Plano, TX at HUNTER Technical Resources

Date Posted: 3/6/2019

Job Snapshot

Job Description

Senior Security Applications Engineer:
1 Position. Perm.
Competitive Salary with bonus!.

5 to 10 years of experience in Cybersecurity and/or Application Security

  • Must have strong hands-on experience with proprietary and open source Application Security vulnerability scanning tools
  • Must have strong hands-on experience with Docker and Kubernetes
  • Must have Azure and/or AWS expertise
  • Must have hands-on experience with APIs and Web Services, both API development and API usage
  • Knowledge of key best practices, compliance standards or frameworks such as OWASP Top 10, NIST, and SANS Top 20
  • Extensive experience with network security devices such as web application firewalls, API Gateways, and DDoS mitigation solutions
  • Must have hands-on UNIX and shell scripting experience

Senior Application Security Engineer who has very granular and deep experience in testing and screening software for security vulnerabilities.  This position will report to the Deputy Chief Information Security Officer (CISO), and will interact with product development, cloud engineering and DevOps teams to integrate static and dynamic testing tools, define and enforce policies, and facilitate ongoing steering committee working sessions.  Additionally, this role will own threat modeling and application risk assessments across product teams. 

You will be a part of a highly talented Information Security team pioneering Information Security in one of today's most innovative and highly visible industries.  Information Security is immersed in all the technology and engineering groups vs. standing off to the side.  We are looking for team members that are required to be creative in solving problems, excited to work in new technology areas and be ready to wear multiple hats to get things done in a highly-energized, fast-paced, innovative, and collaborative startup environment.  While the role will be entirely chartered towards Information Security, we are looking for leaders in the DevOps and Containerization space that have experience across all aspects of application development, including cloud, CI/CD, and containers.

Responsibilities: 

  • Conduct application risk assessments and facilitate threat modeling for cloud solutions
  • Manage and configure static code analysis tool, including policy enforcement, automated CI/CD integration, and Open Source Software (OSS) security
  • Experience with both open source and proprietary static analysis tools
  • Manage and configure Container security tools, e.g. Twistlock / AquaSec, including policy enforcement and alerting
  • Assist with routine API and Web Application penetration testing
  • Define and rollout detailed secure coding standards and policies
  • Manage and facilitate secure coding training and awareness
  • Continuously improve and adapt application security program 
  • Work with our existing global cloud security organization to ensure knowledge sharing and collaboration

Qualifications:

  • You are smart and can demonstrate it
  • 5 to 10 years of experience in Cybersecurity and/or Application Security
  • Must have strong hands-on experience with proprietary and open source Application Security vulnerability scanning tools
  • Must have strong hands-on experience with Docker and Kubernetes
  • Must have Azure and/or AWS expertise
  • Must have hands-on experience with APIs and Web Services, both API development and API usage
  • Knowledge of key best practices, compliance standards or frameworks such as OWASP Top 10, NIST, and SANS Top 20
  • Extensive experience with network security devices such as web application firewalls, API Gateways, and DDoS mitigation solutions
  • Must have hands-on UNIX and shell scripting experience
  • Hands-on experience (i.e. scripting) with Circle CI and/or Jenkins is a plus
  • We think the knowledge acquired earning a degree Computer Science would be of great value in this position, but if you're smart and have the experience that backs up your abilities, for us, talent trumps degree every time

 

???????