Description
We are seeking a highly skilled and experienced Principal Application Security Engineer to join our team. This role will work closely with the development teams to ensure that security is integrated into the software development lifecycle.
\n- Develop and implement application security best practices, policies, and procedures;
- Conduct regular security assessments and penetration testing to identify and address vulnerabilities;
- Collaborate with the development team to ensure that security is integrated into the software development lifecycle;
- Monitor, analyze, and triage security logs to detect and respond to security incidents;
- Stay up-to-date on the latest security threats and trends, and provide guidance on how to mitigate risks;
- Provide security training and awareness programs to educate employees on secure software development best practices;
- Integrate or build security tools that help to continuously monitor our ecosystem.
- Bachelor's degree in Computer Science, Information Technology, or related field;
- 5+ years of experience in application security engineering;
- Strong knowledge of web application security vulnerabilities and best practices;
- Hands-on experience with application security tools such as Snyk, Burp Suite, DefectDojo;
- Experience with cloud security and container security is a plus;
- Hands-on experience in scripting/coding, preferably in Python;
- Excellent communication and interpersonal skills;
- Good verbal and written communication skills in English.
- CISSP, CEH, CSSLP, OSCP, GWAPT or other security certifications are a plus.
