Application Security Engineer

$150,000 - $190,000/Yr

Aya Healthcare - State College, PA

posted 30 days ago

Full-time - Mid Level
State College, PA
5,001-10,000 employees
Administrative and Support Services

About the position

The Application Security Engineer at Aya Healthcare plays a crucial role in enhancing the security of applications within the organization. This individual contributor position involves collaborating with software engineers and other security teams to integrate security practices into the software development lifecycle (SDLC). The role focuses on conducting vulnerability assessments, developing security standards, and staying informed about emerging threats to ensure the security of Aya's software and applications.

Responsibilities

  • Maintain relationships with software engineers, scrum masters, architects, and other security teams to incorporate security principles into the SDLC.
  • Take part in architecture design reviews.
  • Conduct vulnerability assessments and software composition analysis on applications within the organization to unveil concealed vulnerabilities in the code.
  • Collaborate with development teams to remediate vulnerabilities.
  • Develop and maintain security assessment procedures and guidelines.
  • Develop security best practices to be used as security standards within Aya.
  • Stay up to date on emerging threats that affect the security of Aya's software and applications.
  • Assist with training of Security Champions, when required.

Requirements

  • Bachelor's degree preferred, and/or equivalent experience
  • 5+ years' experience in software, product, or application security
  • Familiarity with one or more programming languages, such as C#, PHP, Python, and Java
  • Experience with Agile Development Methodologies
  • Understanding and experience with OWASP Top 10 Risks, software security maturity models (such as SAMM or BSIMM), and secure software development lifecycle (SLDC) processes/techniques
  • Experience performing software threat modeling, such as STRIDE
  • Self-starter requiring minimal supervision
  • Strong tendency to action and able to work in a fast-paced environment
  • Experience in an Azure Environment is preferred
  • Industry certifications (Security+, GWAPT, OSCP, CISSP) are preferred.

Benefits

  • Free premium medical, dental, life and vision insurance
  • Generous 401(k) match
  • Paid sick leave in accordance with applicable laws
  • Unlimited PTO
  • Company-sponsored virtual events, happy hours, and team-building activities
  • Special treat on your birthday
  • Virtual yoga, meditation or boot camp classes offered daily

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service