Unclassified - Natchez, MS

posted 19 days ago

Full-time - Mid Level
Natchez, MS
5,001-10,000 employees

About the position

The Application Security Engineer will be a key member of the Information Security team, responsible for ensuring the security of applications through secure coding practices. This individual contributor role involves collaboration with software engineers to enhance security practices and align them with business objectives, while also conducting vulnerability assessments and developing security standards.

Responsibilities

  • Maintain relationships with software engineers, scrum masters, architects, and other security teams to incorporate security principles into the SDLC.
  • Take part in architecture design reviews.
  • Conduct vulnerability assessments and software composition analysis on applications within the organization to unveil concealed vulnerabilities in the code.
  • Collaborate with development teams to remediate vulnerabilities.
  • Develop and maintain security assessment procedures and guidelines.
  • Develop security best practices to be used as security standards within Aya.
  • Stay up to date on emerging threats that affect the security of Aya's software and applications.
  • Assist with training of Security Champions, when required.

Requirements

  • Bachelor's degree preferred, and/or equivalent experience
  • 5+ years' experience in software, product, or application security
  • Familiarity with one or more programming languages, such as C#, PHP, Python, and Java
  • Experience with Agile Development Methodologies
  • Understanding and experience with OWASP Top 10 Risks, software security maturity models (such as SAMM or BSIMM), and secure software development lifecycle (SLDC) processes/techniques
  • Experience performing software threat modeling, such as STRIDE
  • Self-starter requiring minimal supervision
  • Strong tendency to action and able to work in a fast paced environment
  • Experience in an Azure Environment are preferred
  • Industry certifications (Security+, GWAPT, OSCP, CISSP) are preferred

Nice-to-haves

  • Experience in an Azure Environment
  • Industry certifications (Security+, GWAPT, OSCP, CISSP)

Benefits

  • Free premium medical, dental, life and vision insurance
  • Generous 401(k) match
  • Paid sick leave in accordance with applicable laws
  • Company-sponsored virtual events, happy hours and team-building activities
  • Special treat on your birthday
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service