Cyber Security Engineer

Overview:

The Sr. Application Security Engineer is responsible for the secure design and testing of internally developed software and deeply understands security principles, technologies, and methodologies. The Sr Application Security Engineer works with software development teams from design to code implementation, ensuring security is included in the complete software development life cycle. The ideal candidate has a strong technical background and proven leadership experience, with expertise in cybersecurity, software development, automation tools, and scripting languages.

Responsibilities:

• Perform application security testing using automated tools such as SAST, SCA, and DAST.
• Evaluate automation testing results for accuracy and assign priority based on risk.
• Communicate the nature and severity of security concerns to development teams.
• Provide technical guidance and direction to remediation security weaknesses.
• Continuously evaluate emerging threats, identify current control gaps, lead the search for software solutions, conduct vendor evaluations, manage proof of concepts, oversee vendor selection, ultimately deploy and manage the selected tool.
• Identify gaps and propose solutions to increase security efficiency and effectiveness.
• Assist in documenting secure code guidelines, best practices, and procedures.
• Assist in the development of processes and solutions to automate repeatable tasks.
• Stays current on cyber security threats and prevention methods.
• Mentor junior engineers by providing technical guidance, offering constructive feedback, and fostering a collaborative and supportive environment.