Application Security Lead

  • MARS IT,
  • Baltimore, MD
  • 47 minutes ago
Application Security, iOS, Android, AWS, Cyber Security
Full Time
$120,000 - $140,000
Work from home available

Job Description

Project Description:

  • Make a real-world security impact to 200M+ athletes and fitness enthusiasts globally as an Application Security Lead for Client’s suite of Fitness and E-Commerce applications. As the Application Security Lead on Client’s Digital Product Security team, you will build and leverage tools, vendor solutions, and automation to secure our MapMyFitness and eCommerce spanning web, mobile, APIs and even wearable devices.
  • The Application Security Lead on Client’s Digital Product Security team builds and leverages tools, vendor products, and automation to secure our MapMyFitness and eCommerce apps. The application code base spans web, mobile (iOS and Android), application programming interfaces and even wearable devices.

 

Essential Duties & Responsibilities:

  • Lead the evaluation and improvement of our software development life cycle (SDLC) and software security maturity model
  • Identify & investigate vulnerabilities in web, mobile (iOS and Android), API, and Infrastructure as Code
  • Implement and leverage code repository native and add-on security services, especially Github Advanced Security
  • Develop code that leverages open source security tools and vendor tools/APIs to fill capability gaps in order to improve coverage and reduce identification time
  • Subject matter expert during the entire development lifecycle to include design, development, QA & security testing, and production

 

Qualifications (Knowledge, Skills & Abilites):

  • Strong familiarity with OWASP Top Ten, SAST, DAST, & vulnerability management
  • Familiar with multiple programming languages and the ability to quickly learn new ones
  • Ability to perform application penetration testing
  • Knowledge of numerous software security vendors & products
  • Solid understanding of code security fundamentals to build and secure internet-scale applications
  • Strong cross-functional teaming skills to coordinate and implement security changes/solutions with product and engineering teams
  • Comfortable with Amazon Web Services (AWS), to include the command line/API, and container-based deployments and orchestration tools

 

Education and/or Experience:

  • Computer science/IT/engineering bachelor’s degree
  • Requires 7+ years of cyber security experience
  • Requires 4+ years of technical, hands-on application security experience and/or app penetration testing
  • Experience coding scripts and using APIs to build custom application security solutions
  • Experience working in DevOps environments using JIRA ticketing workflows
  • Experience with regulatory frameworks such as PCI, GDPR, & CCPA

 

Other Requirements:

  • Travel: 5% per year
  • Cyber Security and/or Application Security Certifications preferred
  • Software development background preferred

 

Relocation:

  • This position is based out of Austin, TX or Baltimore, MD, but has remote work flexibility
  • Relocation provided
Dice Id : 10275619
Position Id : 6907759
Originally Posted : 2 months ago
Have a Job? Post it

Similar Positions

Senior API Security Engineer
  • Motion Recruitment
  • Phoenix, AZ, USA
Application Threat Modeling Engineer
  • Motion Recruitment
  • Phoenix, AZ, USA
Application Security Engineer
  • Motion Recruitment
  • Los Angeles, CA, USA
Application Security Engineer
  • Motion Recruitment
  • Los Angeles, CA, USA
Threat Modeling Engineer
  • Motion Recruitment
  • Phoenix, AZ, USA
Application Security Engineer / Gaming / $150K
  • Motion Recruitment
  • Los Angeles, CA, USA
Product Security Engineer
  • Judge Group, Inc.
  • Ashburn, VA, USA
Product Development Project Manager - IV
  • Judge Group, Inc.
  • Grand Prairie, TX, USA
Technical Product Manager (Solutions Architect)
  • Crossfire Consulting Corp
  • Irving, TX, USA
Product Manager - IV
  • Judge Group, Inc.
  • Grand Prairie, TX, USA