Lead Application Security Engineer

Overview

On Site
Hybrid
Depends on Experience
Full Time
No Travel Required
Unable to Provide Sponsorship

Skills

Application Security
information security
Veracode
CheckMarx

Job Details

Job Description:

CANDIDATES CAN NOW SIT IN ANY OF THE BELOW LOCATIONS: 

IRVING, TX or Wilmington, DE, Manassas, VA OR Des Moines, IOWA

We are looking for a versatile and Leader with hands-on engineer with cross-vertical technical expertise encompassing penetration testing strategy and execution, vulnerability management, static code analytics, and policy compliance. Here, you’ll sit directly at the intersection of technical innovation and business engagement. You’ll actively partner with our engineers along with our Security Management and Senior Leadership teams to lead initiatives across our highly distributed, multi-national footprint. You’ll engage in both project execution and project leadership, working side by side with our Director of Vulnerability Management to ensure the fluid continuity of compliance programs across the enterprise. And as we continue to standardize our security posture, you’ll have opportunities to influence change and see the impact of what you’re doing each and every day to secure our global infrastructure.

 

Key functions include but are not limited to the following:

  • Lead initiatives and projects to support and enhance our application security initiatives which include penetration testing capabilities and static code
  • Bring your ideas forward, evaluating how to optimize the tools we’re using and exploring technologies that could continue to enhance our security posture and ensure solutions scalability
  • Develop and lead projects to continually analyze source code, pinpointing and remediating potential vulnerabilities upon discovery
  • Manage compliance scanning process across the enterprise to identify and remediate potential risks and vulnerabilities as expeditiously as possible
  • Continuously communicate that status of our security compliance projects and programs to provide updates and obtain buy-in from global engineering, business, security management, and senior leadership teams

 

Qualifications:

  • Minimum of 5+ years of experience in Information Security or a related role encompassing security compliance, penetration testing, vulnerability management, and/or static code analysis
  • Prior experience leading projects and/or as a supervisor or team lead preferred
  • Bachelor’s degree in Computer Science, Information Security, Network Engineering, or a related technical discipline required; prior experience may substitute for education
  • Demonstrate proficiency in commonly used Penetration Testing Tools
  • Demonstrate proficiency in Web Application scanning tools
  • Demonstrate experience and proficiency in a Static Code Analysis Tool (For example: Veracode, Fortify, Checkmarx, etc.)

Proven ability to engage with and secure buy-in from business, technical, and executive stakeholders required

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.