JOB DESCRIPTION:

Responsibilities

• Application security reviews (SAST, DAST, Pen testing)
• Secure architecture design
• Threat modeling
• Security outreach to internal development teams
• Security guidance documentation
• Security metrics delivery and improvements
• Build deep relationships with product teams.
• Drive security risk decisions, initiatives, and influence technical architecture

Basic Qualifications

• BS in Computer Science or related field, or equivalent work experience.
• Minimum of 3 years of experience with any combination of the following: secure coding, threat modeling experience, identity management and authentication, software development and network security.

Preferred Qualifications

• An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
• Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)
• An understanding of web services
• Applied knowledge of securing AWS, Azure, and other public cloud providers
• Experience with common security vulnerabilities on web apps
• Strong sense of ownership, urgency, and drive
• Ability to assess security risks within an application
• Demonstrable teamwork skills and resourcefulness
• Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge

• Application security reviews (SAST, DAST, Pen testing)
• Secure architecture design
• Threat modeling
• Security outreach to internal development teams
• Security guidance documentation
• Security metrics delivery and improvements
• Build deep relationships with product teams.
• Drive security risk decisions, initiatives, and influence technical architectur