go to searchapplication security engineer
Security.Risks, Application Security, Code Review, DAST (Dynamic application security testing), SAST (Static Application Security Testing), SDLC Implementation, Secure Coding Practices, Secure SDLC, Security Testing, Threat Modeling, Amazon Web Services, DevOps, Docker Containers security, Go Language, Java, Kubernetes, OWASP Top 10, Python, Rust, Terraform
Application Security Engineer
We are looking for an Application Security Engineer to join our remote team.
Your primary focus will be to ensure our Customer's information systems' confidentiality, integrity, and availability. You will work with various security tools and technologies to ensure that applications and gaming systems are secure. If you are one step ahead of the bad guys and passionate about security, we would love to hear from you!
responsibilities
- Perform application security assessments on internal, and external applications, while defining and updating an application security methodology
- Keep apprised of secure coding best practices and assist with static/dynamic code analysis
- Design, create, test, document, deploy, and maintain new automation, capabilities, and security services for the InfoSec team
- Stay abreast of Customer's applications and their security posture
- Define and develop InfoSec training on web-based exploits/tools and corresponding mitigation techniques
- Collaborate with cross-functional teams to build complex solutions
requirements
- 2+ years of experience in Information Security principles, technology, and control processes
- development experience building systems in languages such as Python, C++, Golang/Rust
- Expertise in application security, code review, DAST (Dynamic Application Security Testing), and SAST (Static Application Security Testing)
- Experience with Secure Coding and AppSec frameworks (OWASP Guide, SANS CWE Top 25, CERT Secure Coding)
- Hands-on experience in implementing secure SDLC practices
- Good understanding of DevOps principles, Docker container security, and Kubernetes
- Experience working with and setting up services on AWS infrastructure
- Experience in threat modeling and implementing security testing methodologies like OWASP Top 10
- Understand and be able to apply concepts such as algorithms, data structures, OOO design, databases
- CEH and Offensive Security Certification (OSCP, GPEN, or GWAPT)
- Excellent oral and written communication skills, including report writing and technical documentation
- Fluent in English with an Upper-Intermediate level of proficiency
nice to have
- Experience in CI/CD systems and knowing how to work with Terraform
- Familiarity with Java
benefits for locations
Colombia
For you
- Prepaid Medicine with Colsanitas for you and your legal dependents
- MetLife Life Insurance for you
- Thousands of projects for top brands
- Stable income
For your comfortable work
- 100% remote work forever
- Free licensed software
- Possibility to work on your own device (BYOD)
- Stable workload
- Relocation opportunities
- Flexible engagement models
For your growth
- Free trainings for technical and soft skills
- Free access to LinkedIn Learning platform
- Support from a personal Skill Advisor
- Language courses
- Free access to internal and external e-Libraries
- Access to internal communities and competency centers
- Certification opportunities
don't have time? Apply later!We send you a link to the job in your e-mail
get job alerts in your inboxHundreds of open jobs for Software Engineers, QA, DevOps, Business Analysts and other tech professionals
