Application Security Engineer

Suncoast Credit Unionposted about 2 months ago

$95,000 - $135,000/Yr

Full-time • Mid Level

Remote • Tampa, FL

Credit Intermediation and Related Activities

Upload and Match ResumeTrack Jobs with Teal

About the position

The Application Security Engineer collaborates closely with the enterprise agility, application development staff, information security and IT teams to implement a DevSecOps program. This role ensures security is built into web applications developed at Suncoast Credit Union. The individual is responsible for maintaining secure development standards, performing application penetration tests, and documenting remediation steps for the organization's applications. This position will maintain products assigned to application security and provide appropriate hands-on training to development staff.

Responsibilities

Identify, exploit, and remediate common application vulnerabilities using tools and code review
Collaborate with the application development team to remediate vulnerabilities
Utilize penetration testing skills, tools, and methodology to assess new applications or services
Enforce secure development standards and requirements
Contribute to application security development projects and discussions
Utilize SAST/DAST and other products to identify security vulnerabilities
Develop and conduct security-focused training for the Suncoast Credit Union development team
Perform research on new security trends, tools, and techniques to improve existing processes
Prioritize and track assigned security issues
Maintain a professional working relationship with other departments through clear communication
Assist new team members with acclimating to new job roles and responsibilities
Respond to emergency situations in a proactive manner
Maintain knowledge and understanding of current trends, laws, and issues affecting area of expertise
Attend educational events to increase professional knowledge and benefit the organization

Requirements

Bachelor's degree in computer science, cyber security, or related field required
3+ years of secure development experience
Experience programming and developing in .net
Strong knowledge of secure development and secure architecture
Familiar with C++ and C Sharp preferred
Proficient with cyber security, conducting penetration tests to assess vulnerabilities in applications (Blue Test or ethical hacker)
CSSLP, CISSP, GWAPT, CEH, or other applicable certifications preferred
Strong knowledge of web application vulnerabilities, exploits, and remediation techniques
Competent with dynamic and static testing tools or techniques
Experienced with secure coding principles and architecture
Ability to work as part of a larger team to find solutions
Ability to prioritize tasks by effectively managing competing and changing priorities to meet deadlines
Accurate, detail-oriented, and organized with task management
Ability to analyze and resolve complex problems
Excellent written, verbal, and interpersonal communication skills to interact effectively with members, staff, vendors, and government regulators
Ability to influence others regarding policies, practices, and procedures