Application Security Engineer job opportunity is available in Atlanta, GA

Unclassified - Atlanta, GA

posted 6 days ago

Full-time
Atlanta, GA

About the position

The Application Security Engineer role is focused on enhancing software application and systems security within the organization. This position involves consulting on security measures to minimize vulnerabilities in coding and configuration, ensuring secure software development throughout the Software Development Life Cycle (SDLC). The Security Consultant will engage with both business and technical teams, review project documentation, and provide recommendations to uphold security standards.

Responsibilities

  • Provide technical expertise on the development and support of activities, processes, and tools for protecting technology-based information.
  • Offer technical support to clients, management, security administrators, and network operations.
  • Review, develop, test, and implement security plans, products, and control techniques.
  • Analyze data security incidents and design corrective actions, documenting security policies and procedures.
  • Support implementation of risk assessment and data security procedures and products.
  • Lead the definition, establishment, and maintenance of data and security-related infrastructure, applications, and processes.
  • Evaluate new and proposed security systems and technologies.

Requirements

  • Professional experience with software application security and its associated standards and practices.
  • Experience as a software application developer in a popular development language (e.g., Java, .NET, C/C++), performing web-based development.
  • Experience with securing mobile devices and applications, understanding attacks and vulnerabilities.
  • Familiarity with popular operating systems such as Microsoft Windows and Unix/Linux.
  • Experience with popular system databases such as Oracle, MS SQL Server, MySQL.
  • Knowledge of processes, tools, techniques, and practices for ensuring adherence to standards for accessing, altering, and protecting organizational data.
  • Understanding of security policy, its interpretation, reference, and usage in delivering opinions and recommendations.
  • Clear understanding of software design standards, principles, and practices.
  • Knowledge of information security risk management frameworks (ISO/IEC 27001:2013, Octave-Allegro, ISO/IEC 31000, FAIR).
  • Knowledge of PCI DSS 3.0, GLBA, SOX, COBIT, ISO/IEC 27001:2013, and/or NIST CSF standards.
  • Bachelor's degree in Computer Science, Engineering, Information Systems, Information Security, Mathematics, or a related technical field.

Nice-to-haves

  • Experience with software code analysis tools (e.g., FindBugs, HP Fortify SCA), including their use, configuration/tuning, and results interpretation.
  • Good understanding of risk management, security architecture, common weaknesses, and vulnerability analysis.
  • Familiarity with software testing tools (e.g., OWASP Zap).
  • Security-centric certifications such as CSSLP or CISSP.
  • Experience in the payments industry or financial sector.
  • Master's degree in Computer Science, Engineering, Information Systems, Information Security, Mathematics, or a related technical field.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service