25 Jul
Senior Application Security Engineer
California, Woodland , 95695 Woodland USA

Vacancy expired!

Job Requirements:Essential:

  • In-depth technical and foundational knowledge of software engineering, computer systems, security engineering, authentication, and/or applied cryptography.
  • Solid knowledge of all web technologies, especially web services, web applications, Service Oriented Architectures, and network/web protocols
  • Sound knowledge of all procedures, standards, and regulations for authorization and authentication, applied cryptography, and security vulnerabilities.
  • Software engineering experience in all phases of the software development lifecycle.
  • Strong experience in web security and federation protocols (SSL/TLS, REST, OAuth, SAML, LDAP-S, SAML, WS-Federation, SCIM, OAuth, and OIDC, XSS, etc.)
  • Experience working with AWS or other cloud environments (development/architecture)
  • Experience with cloud and web application security standards (OWASP ASVS, SANS 25, etc.)
  • Understanding beyond the OWASP Top 10 by explaining the level of risk to the business.
  • 5+ years of experience in software development in one or more of the following programming languages, .NET, Python, Java, JavaScript (Node/React), and/or Go
  • Comfortable with tools like Snyk.io, BluBracket, NoName Api security, Burp Suite, OWASP ZAP, CheckMarx, Veracode, App Spider etc.
  • A deep interest in knowing latest industry advancements in software security along with implementing them.
  • An analytical mind with a problem-solving attitude
  • Excellent organizational and communication skills

  • Expereince/strong Knowledge of AD/Azure AD and Azure AD B2B/ B2C , Okta
Desirable:
  • A Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity, Information Security, or a related technical field.
  • 10+ years of hands-on technical experience.
  • Experience in Docker, Terraform, Kubernetes.
  • Experience working in an Agile development environment.
  • Experience with regulatory requirements, and aligning security standards, frameworks, and corporate policy with overall business and technology strategy.
  • Experience securing operating systems, networks, and low-level infrastructure.
  • Experience with attacker tactics, techniques, and procedures, and corresponding mitigation methods.
Plus:
  • Experience with automation tools like Ansible, Chef, Puppet, Jenkins
  • Experience with automated application testing tools/frameworks e.g. Selenium, SonarQube
  • Experience with Web Application Firewalls (WAF)
Note: If you are interested, pls share your resume to email: satishkumar.durga@brillio.comRegards,Satish

Vacancy expired!

Subscribe for new vacancies
Report job