Overview
Remote
Up to $75
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 12 Month(s)
Skills
SCA
Testing
Nexus
Software Security
Security Analysis
Java
.NET
Firewall
Firewall Administration
Application Development
SAST
DAST
Sonatype Lifecycle
Nexus Firewall
Security Testing
Security QA
Job Details
Application Security Engineer
Remote
Contract
Job Description:
1. Security Assessment Reviews:
- Review and approve SAST, DAST, and SCA testing results for applications within our build pipelines.
- Provide remediation guidance to application development teams.
- Onboard new applications to security testing.
2. Sonatype Lifecycle and Nexus Firewall:
- Monitor, triage, assign, and report Sonatype-identified CVEs detected within our codebase.
- Assist Azure developers, data scientists, and actuaries with the implementation of Nexus Firewall to prevent malicious or non-compliant components from being introduced to local repositories.
- Conduct regular Nexus Firewall audits to ensure no malicious components have bypassed the firewall.
- Integrate Sonatype-identified vulnerabilities into the aggregation and reporting performed by our ASOC tooling on our application portfolio.
Qualifications
- Proven experience in application security, including SAST, DAST, and SCA testing.
- Strong development background in Java or .NET applications.
- Experience with Sonatype Lifecycle and Nexus Firewall management.
- Strong problem-solving skills and attention to detail.
- Excellent communication and collaboration skills.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.