Overview
On Site
$50 - $60
Accepts corp to corp applications
Contract - W2
Contract - 12 Month(s)
100% Travel
Skills
Application Security
Container Security
OWASP
Job Details
Mandatory Skills: Application Security, Container Security, OWASP,
Job Description:
We are looking for a skilled and detail-oriented Application Security Engineer with a strong development background to join our Cybersecurity team.
This role focuses on securing applications and APIs through manual testing, secure code reviews, and close collaboration with development teams.
The ideal candidate will have solid programming experience and a deep understanding of modern application security practices, including DevSecOps.
Key Responsibilities
Perform manual security testing of RESTful and GraphQL APIs to identify vulnerabilities.
Review source code and application implementations to ensure secure coding practices.
Validate APIs and applications against OWASP Top 10, ASVS, and internal security standards
.Evaluate and improve authentication, authorization, encryption, and input validation controls.
Collaborate with developers to support secure SDLC and remediation efforts.
Provide clear, actionable guidance based on security test findings.
Stay current on emerging threats, tools, and best practices in application security.
Required Qualifications
Experience with manual application and API security testing.
Strong programming skills in Java, JavaScript, and Python.Familiarity with tools like Postman, Burp Suite, OWASP ZAP.
Good understanding of OWASP Top 10, ASVS, and secure coding principles.Ability to read and analyze code to identify security flaws.
Strong communication, documentation, and problem-solving skills.Ability to manage testing timelines aligned with product releases.
Preferred Qualifications
Security certifications such as OSCP, CSSLP, GWAPT, or similar.
Experience with cloud platforms (AWS, Azure, Google Cloud Platform).
Familiarity with DevSecOps practices and security in CI/CD pipelines.
Knowledge of container security (e.g., Docker, Kubernetes).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.