Sr. Application Security Engineer

Twitter Facebook
Any US City
Job Type
Direct Hire
May 06, 2019
Job ID

Sr. Application Security Engineer – Salt Lake City, UT or Phoenix AZ
Work for a well established, well known Fintech with offices around the globe.
Position will report to the Senior Director of Cybersecurity and will work closely with the software development team to assist in security requirements, threat modeling, web application security penetration testing and provide secure SDLC guidance.
• Act as liaison between Cybersecurity and the digital banking development team
• Assist development team implementing secure SDLC practices
• Threat model web applications and work with development team throughout the agile SDLC
• Perform web application vulnerability assessments and penetrations tests
• Provide security and compliance requirements for software development projects 
Required Qualifications:
• BS in Computer science or equivalent experience
• Experience in web application security testing (assessment/penetration testing)
• Strong analytical skills and ability to quickly learn new skills
• Good verbal and written communication skills
• Familiarity with OWASP guidelines
• Software development experience
• Knowledge of Agile and Secure SDLC
Additional Preferred Qualifications:
• One or more Certifications (CISSP, GWEB, GPEN, GWAPT, OSWE, OSCE, OSCP)
• Scripting or code experience (Python, Shell, Java, json, Scrum, Jira, etc)
• Familiarity with network and web application protocols (Http, Https, TCP/IP, SAML 2.0, OAuth 2.0, Rest    
   APIs, etc)
• Knowledge or experience implementing SDLC frameworks like OpenSAMM and BSIMM
• Database knowledge