Vacancy caducado!
BravoTECH, a leader in IT staffing and staff augmentation services, seeks an Applications Security Engineer for our preferred Grapevine, TX based manufacturing client. The qualified candidate must have at least 3 years of experience as a software engineer/developer in product development with a focus on application security, specifically reviewing code, identifying security defects, and working with developers to make the appropriate corrections.
This role will be responsible for providing the security guidance to the application development teams. It will educate the development teams of best practices as it relates to security automation through the use of products and services.Job Responsibilities- Provide application/product security guidance to application development teams.
- Advise and educate development teams with respect to application security best practices, security automation within the SDLC, and the proper use of application security products and services.
- Perform application security assessments of internally developed products and systems, covering architecture, design, and implementation.
- Build threat models for and perform architectural risk assessments of internally developed products and systems.
- Perform automated and manual security code reviews
- Other duties as assigned by management.
- Bachelor' s degree in Computer Science, Software Engineering, Computer Engineering, Information Security, Information systems, or related field required.
- 3-7 years of experience as a software engineer/developer in a product development with a focus application security, specifically reviewing code, identifying security defects, and working with developers to make the appropriate corrections.
- At least 2 years of experience with assessing and reviewing application code for solutions using public cloud services.
- Experience should include familiarity with OWASP & SANS identified common security coding flaws, threat modeling, and automated & manual static security code analysis.
- Advanced understanding in application architecture and technology including web applications and mobile technology.
- Advanced knowledge of authentication & authorization, public cloud security (particularly Azure), PKI, and cryptography.
- Information Security Certifications are highly desirable.
Vacancy caducado!