Application Security Engineer

Company:  RightTalents LLC
Location: New York
Closing Date: 23/10/2024
Hours: Full Time
Type: Permanent
Apply Now
Job Requirements / Description

Title: Application Security Engineer

Client: NYC Agency

Location: Manhattan, NY - Hybrid. 3days onsite / 2 days remote

Duration: 12 Months

Work Hours: 35 Hours/ week (7hrs a day)

Job description

  • Work with product development, management, engineering and operational teams to develop best of breed security architectures supporting compliance (e.g. NYC Privacy Law, NYC Citywide Security Policies, HIPAA, SHIELD Act), customer requirements and operational SLAs
  • Provide practical guidance to engineering teams to support the implementation of security controls, guidelines, recommendations and best practices
  • Develop and implement Secure Development Lifecycle (SDL) processes and (automated / devops) tools, integration to CI/CD
  • Assist engineering teams in performing Threat Modeling, identify application threats/vulnerabilities and recommend mitigation strategies
  • Assist teams in identifying mitigation approaches for of vulnerability and static/dynamic scan results
  • Identify technical solutions and security tools to help mitigate security vulnerabilities and automate repeatable tasks

Experience

  • Strong understanding of application security and industry standards and best practices (OWASP / SANS / NIST)
  • Strong understanding of SDLC and Secure Development Lifecycle (SDL) including performing threat modeling and risk assessments
  • Strong understanding of integration of security in CI/CD pipeline, DevOps, DevSecOPS
  • Experience designing and implementing API Security and Access Controls (OAuth/SAML, Web SSO, AWS IAM, Federation)
  • Must be a self-starter and able to work well with others in a fast-paced agile environment with an emphasis on collaborating and assisting the team to meet business objectives

Qualifications:

  • 3+ year experience in tools like SD Elements, Veracode, Tenable, Rapid7 or equivalent products.
  • Experience integrating tracking of issues with Service Now plus.
  • 10 years of Information Technology experience
  • 5 years of Application Development Experience
  • 7+ years of security engineering experience
  • Bachelor’s degree in information security/systems or related experience
  • CISSP / CCSP certification a plus
Apply Now
Apply Now
Share this job
RightTalents LLC
Useful Links
More Jobs in New York
Full Time Jobs in New York
Part Time Jobs in New York
Security Jobs
Engineering Jobs
An error has occurred. This application may no longer respond until reloaded. Reload 🗙