Title: Application Security Engineer @ Atlanta, GA
Terms of Hire: Full Time
Salary: $ Open / yr + Benefits
JOB INFORMATION
Position Location: Atlanta, GA
In this mission-critical role as an Application Security Engineer, you will be part of a dynamic global application security team, working directly with software architects and software engineers to perform penetration testing on software solutions developed within the company. You’ll collaborate with engineering to triage security findings and review remediation techniques to harden and improve the security of CLIENT software across multiple types of software.
As CLIENT pushes forward as a software-focused company, you’ll work in a fast-paced environment, helping enable teams to work in a DevSecOps model in a world of containers, automated pipelines, and rapid deployments. You’ll be instrumental in helping teams add security testing as part of their build and release pipelines. CLIENT produces hardware and software for major companies in Retail, Hospitality, and Financial Services – come help secure the state-of-the-art!
Responsibilities:
- Conducting manual penetration tests of CLIENT software
- Assessing risk level of security findings using common methodologies
- Running automated application security tools
- Writing and presenting pen test reports to development teams
- Consulting with development teams on remediation techniques and defensive coding
- Validation testing to confirm findings are closed
- Develop, integrate, and enable security engineering test automation into a CI/CD pipeline
- Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes
Required Skills and Experience:
- Bachelor’s Degree in Computer Science or related field - equivalent work experience will be considered
- Application pen testing background of 4-7 years
- Mobile application test experience (iOS and Android)
- Web application test experience
- Web services/API test experience
- Soft skills - effective communication (internal, customer, legal counsel), collaboration (internal, external) and effective written skills (white papers, vulnerability specifications, etc.)
Preferred Skills and Experience:
- Experience with automation of security testing as part of a CI/CD pipeline
- Experience with retail, financial, and/or hospitality software, particularly the types of vulnerabilities and security testing associated with them
- Previous hardware/POS pen test experience
- Active participation in cybersecurity forums/conferences, e.g. DEFCON, Black Hat
- Experience with privacy requirements of a global corporation (e.g. GDPR, CCPA)
- Security certifications, e.g. CEH
Non-Negotiable Requirements:
- Bachelor’s Degree in Computer Science or related field - equivalent work experience will be considered
- Application pen testing background of 4-7 years
- Mobile application test experience (iOS and Android)
- Web application test experience
- Web services/API test experience
- Soft skills - effective communication (internal, customer, legal counsel), collaboration (internal, external) and effective written skills (white papers, vulnerability specifications, etc.)
Nice-to-Have Skills:
- Experience with automation of security testing as part of a CI/CD pipeline
- Experience with retail, financial, and/or hospitality software, particularly the types of vulnerabilities and security testing associated with them
- Previous hardware/POS pen test experience
- Active participation in cybersecurity forums/conferences, e.g. DEFCON, Black Hat
- Experience with privacy requirements of a global corporation (e.g. GDPR, CCPA)
- Security certifications, e.g. CEH
You Will Enjoy:
- An opportunity to be a part of a great culture, an awesome team, a challenging work environment, and some fun along the way!
- Apply today to learn more and be part of our Growth story.
All applications will be kept strictly confidential and once shortlisted, our team will be in touch with you for further discussions.
Department: Scout
This is a full-time position