Lead Application Security Engineer - Veracode/CheckMarx

Duration: 12+Months Interview Process: Video Location: Remote/CAN TRAVEL TO WILMINGTON, DE OR IRVING TX ONCE OR TWICE A QUARTER
Lead Application security engineer with excellent experience working with Veracode and CheckMarx along with other security tools. Candidate must be a Leader with hands-on engineer with cross-vertical technical expertise encompassing penetration testing strategy and execution, vulnerability management, static code analytics, and policy compliance. Must have experience in Information Security or a related role encompassing security compliance, penetration testing, vulnerability management, and/or static code analysis

Job Description: We are looking for a versatile and Leader with hands-on engineer with cross-vertical technical expertise encompassing penetration testing strategy and execution, vulnerability management, static code analytics, and policy compliance. Here, you ll sit directly at the intersection of technical innovation and business engagement. You ll actively partner with our engineers along with our Security Management and Senior Leadership teams to lead initiatives across our highly distributed, multi-national footprint. You ll engage in both project execution and project leadership, working side by side with our Director of Vulnerability Management to ensure the fluid continuity of compliance programs across the enterprise. And as we continue to standardize our security posture, you ll have opportunities to influence change and see the impact of what you re doing each and every day to secure our global infrastructure.

Key functions include but are not limited to the following:
Lead initiatives and projects to support and enhance our application security initiatives which include penetration testing capabilities and static code
Bring your ideas forward, evaluating how to optimize the tools we re using and exploring technologies that could continue to enhance our security posture and ensure solutions scalability
Develop and lead projects to continually analyze source code, pinpointing and remediating potential vulnerabilities upon discovery
Manage compliance scanning process across the enterprise to identify and remediate potential risks and vulnerabilities as expeditiously as possible
Continuously communicate that status of our security compliance projects and programs to provide updates and obtain buy-in from global engineering, business, security management, and senior leadership teams
Qualifications
Minimum of 5+ years of experience in Information Security or a related role encompassing security compliance, penetration testing, vulnerability management, and/or static code analysis
Prior experience leading projects and/or as a supervisor or team lead preferred
Bachelor s degree in Computer Science, Information Security, Network Engineering, or a related technical discipline required; prior experience may substitute for education
Demonstrate proficiency in commonly used Penetration Testing Tools
Demonstrate proficiency in Web Application scanning tools
Demonstrate experience and proficiency in a Static Code Analysis Tool (For example: Veracode, Fortify, Checkmarx, etc.)
Proven ability to engage with and secure buy-in from business, technical, and executive stakeholders required