Corporation Service - Wilmington, DE
posted 5 days ago
Full-time - Entry Level
Wilmington, DE
Professional, Scientific, and Technical Services
About the position
The Junior Application Security Engineer will be responsible for providing expertise in the Application Security areas of Web Application Security Services, API Security, and Application Security Testing. This role involves developing policies to protect web applications and APIs from malicious payload attacks, providing virtual patching capabilities, and validation with Security Testing. Additionally, the engineer will assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions.
Responsibilities
- Providing expertise in the Application Security areas of Web Application Security Services, API Security, and Application Security Testing.
- Developing policies to protect web applications and APIs from malicious payload attacks.
- Providing virtual patching capabilities and validation with Security Testing.
- Assisting in developing an automated security framework for robust deployment tools and processes.
Requirements
- Knowledge in building the F5 WAF, API Security, BOT protection, DOS/DDOS protection policies.
- Familiarity with DevSecOps ecosystem: Terraform, Ansible, GitHub, Jenkins, Azure DevOps, SAST, DAST & SCA.
- Knowledge of Cloud & Kubernetes Resource Security, Secure Network and Architecture, SDLC standard and policies.
- Familiarity with Web App Protection AWS and Azure App Protection Policy, Configuration, and Security Management tools.
- Expertise in Programming languages Python, NodeJS, SQL query and Vulnerable Code remediation.
- Proficiency in designing, implementing, and maintaining effective security policies for web applications using WAF technologies.
- Experience coordinating and performing vulnerability assessments using automated and manual tools.
- Ability to review and analyze WAF logs to detect and respond to security incidents promptly.
- Ability to review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and applications.
- Strong experience with BI Design and Development.
- Familiarity with Information Security frameworks/standards (i.e. CIS, NIST, RFC2196, etc.).
- Familiarity with common security libraries, security controls, and common security flaws.
Nice-to-haves
- Security Certifications are a plus.
