Principal Application Security Engineer

.NET, Agile, Architecture, C#, Computer science, DevOps, Firewall, JIRA, Java, JavaScript, Microsoft Windows Azure, OWASP, Proxies, Python, SDLC, Security
Full Time
Depends on Experience
Work from home available Travel not required

Job Description

IBC is seeking experienced and flexible Application Security Engineer. The ideal candidate is passionate about the secure development process and believes that secure applications begin with the design and continue throughout the development life cycle. The Application Security Engineer will be responsible for integrating security into the development of applications. The engineer will work closely with IBC DevOps and application development teams to threat model, vulnerability scan and penetration test the early software, system and architecture while identifying the required control points in the application stack. The engineer will also closely work with developers to diagnose, document and remediate security vulnerabilities. The engineer will also be responsible for evaluating, recommending and implementing security related software on the SDLC. Further, the engineer must be comfortable leading and training developers in secure best practices.

 

Requirements:

  • 10+ years of development experience
  • Proficient in primary development languages such as C+, C#, Java, .Net, Javascript, Python, Powershell
  • Strong understanding of application security frameworks
  • Thorough knowledge of OWASP Top 10 & ASVS
  • Good understanding of security code reviews and SAST, DAST, IAST
  • Basic TCP/IP networking knowledge including DNS, routing, and subnets.
  • Understanding of security hardening concepts including encryption, firewalls, and proxies
  • Good understanding of Continuous Integration and Continuous Delivery concepts
  • Knowledge of JIRA, Azure DevOps, Jenkins, OpenShift, and other DevOps tools
  • Solid understanding of AGILE software development methodologies and use of a standard software development tool suite
  • Self-starter who can operate independently
  • Organized and responsive problem solver
  • Excellent oral, written and presentation skills with the ability to teach and communicate effectively to developers and leadership

 

Formal Education & Certification:

  • Bachelor's degree in Computer Science or related major, or a strong combination of education, training and experience that demonstrates required skills and capabilities
  • Technical Certifications are preferred
Dice Id : ibxpa
Position Id : 6653163
Originally Posted : 2 months ago
Have a Job? Post it

Similar Positions

Senior Cybersecurity Analyst - Partial Remote
  • Phoenix Technology Partners, LLC
  • Chadds Ford, PA
Security Analyst
  • The Judge Group, Inc.
  • King Of Prussia, PA
Cyber Security - Network Admin - Level III
  • Forrest Solutions
  • Swedesboro, NJ
Cloud Security Architect
  • Matlen Silver
  • Plymouth Meeting, PA
Information Security Engineer
  • Janney Montgomery Scott LLC
  • Philadelphia, PA
Cyber Security Operations Engineer - Splunk
  • Leading Path Consulting LLC
  • Moorestown, NJ