Application Security Engineer

• Generous PTO plans, sick pay and health benefits
• Annual bonus based on employment standing*
• Work from home and hybrid model employment
• Corporate Social Responsibility Program
• Diversity, Equity and Inclusion Initiatives
• Confie Hub and Discount Programs (Gym Membership)

Position is not currently Sponsorship Eligible

Focus on identifying and mitigating security vulnerabilities in software applications throughout their lifecycle. Work closely with our development team to integrate security practices and ensure applications are designed, developed, and deployed securely.

Play a crucial part in the security development life cycle from beginning to end.

Define and enforce security requirements and standards for application development, ensuring compliance with regulatory requirements as well as industry best practices.

Conduct regular security assessments and code reviews to identify potential vulnerabilities.

Conduct security reviews of applications and infrastructure to identify and address vulnerabilities.

Work with our developers to promote and implement secure coding best practices, providing guidance and training on security vulnerabilities.

Penetration testing of applications to identify any potential weaknesses and work with our developers to remediate them.

Identify potential security threats and vulnerabilities in applications.

Manage and address security incidents, including root cause analysis and remediations.

Stay up-to-date with the latest application security tools, technologies, and techniques.

• Have an application development background.
• Experience with Microsoft Azure and/or Amazon AWS.
• Must understand and have worked with the SDLC framework.
• Experience with both static and dynamic analysis tools, vulnerability scanners, and other PEN testing tools.
• Strong understanding of security principles, cryptography, web application security, and common vulnerabilities.
• Familiar with the various programming languages and frameworks used in application development.
• Excellent communication and collaboration skills.

• Relevant industry certifications such as SANS, CASE, CSSLP.

This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

Equal Opportunity Employer. This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.