Application Security Engineer

  • location: Fenton, MO
  • type: Temp to Perm
  • salary: $40 - $45 per hour
easy apply

job description

Application Security Engineer

job summary:
Application Security Engineer

  • Fenton, MO
  • 6mo CTH or Direct Hire
  • US Citizens/Green Cards, No 3rd Parties
?Job Description:

The Cyber Security Application Engineer will analyze software design / implementation. The candidate will work with our businesses to implement proper coding practices as well as identify and resolve security issues. This person will help ensure that development efforts include appropriate security analysis, defenses and countermeasures at each phase of the software development lifecycle, resulting in a robust, secure and reliable software.

Responsibilities and Duties:

  • Review security standard and evaluate gap / develop action plans to address
  • Provide guidance to application teams on security best practices throughout all phases of development
  • Develop and deliver application security training to development teams, this will include OWASP best practices as well as the tracking / remediation of any identified application security vulnerabilities
  • Mentor members of the team and assist with skill development
  • Understand, use, and champion application security best practices
  • Harden system components in dev, test, production supporting our Agile development practices
  • Develop threat models and train development teams to maintain them for themselves
  • Implement, test and operate advanced software security techniques in compliance with security framework
  • Provide designs for new software solutions to mitigate security vulnerabilities
  • Collect and capture security performance metrics
  • Perform security testing and code review, scan applications (code, api, runtime) using a variety of tools and technologies, and report findings
  • Research, evaluate, and recommend security technologies that will eventually be implemented
  • Work closely with development teams to understand and address source code analysis results and ensure remediation is integrated into the developer toolkits and processes
  • Troubleshoot and debug security-related issues, maintain documentation
Requirements and Qualifications:

  • 3-5 +years of development or security-related experience
  • Certification (Security +, CISSP, CSSLP, GIAC, GWAPT, GWEB) one or more preferred
  • Working Knowledge of frameworks, Data protection best practices and requirements such as ISO27001, PCI, SOC, and HIPPA
  • Knowledge of security/access control technologies (AD, ADFS, SAML, SLDAP, OAuth)
  • Work experience as a developer, and software security engineer
  • Strong technical knowledge of techniques, standards and capabilities for authentication, authorization, applied cryptography, security vulnerabilities and remediation
  • Software development experience (Java, JavaScript, .NET, C#) and scripting (PowerShell, Python, Perl)
  • In-depth experience identifying and protecting against web application vulnerabilities.
  • Application security tools experience - Burp Suite, Appscan, OWASP
  • Strong knowledge of browser security model, mobile app security, crypto and network security
  • An understanding of application development methodologies e.g. Agile
  • Experience with one or more Cloud Service Providers (AWS, GCP, Azure, etc.)
  • Knowledge of databases and container, API security
  • Experience with source code analysis and vulnerability/penetration scanning tools
 
location: Fenton, Missouri
job type: Contract
salary: $40 - 45 per hour
work hours: 8am to 5pm
education: No Degree Required
 
responsibilities:
Responsibilities and Duties:

  • Review security standard and evaluate gap / develop action plans to address
  • Provide guidance to application teams on security best practices throughout all phases of development
  • Develop and deliver application security training to development teams, this will include OWASP best practices as well as the tracking / remediation of any identified application security vulnerabilities
  • Mentor members of the team and assist with skill development
  • Understand, use, and champion application security best practices
  • Harden system components in dev, test, production supporting our Agile development practices
  • Develop threat models and train development teams to maintain them for themselves
  • Implement, test and operate advanced software security techniques in compliance with security framework
  • Provide designs for new software solutions to mitigate security vulnerabilities
  • Collect and capture security performance metrics
  • Perform security testing and code review, scan applications (code, api, runtime) using a variety of tools and technologies, and report findings
  • Research, evaluate, and recommend security technologies that will eventually be implemented
  • Work closely with development teams to understand and address source code analysis results and ensure remediation is integrated into the developer toolkits and processes
  • Troubleshoot and debug security-related issues, maintain documentation
 
qualifications:
Requirements and Qualifications:

  • 3-5 +years of development or security-related experience
  • Certification (Security +, CISSP, CSSLP, GIAC, GWAPT, GWEB) one or more preferred
  • Working Knowledge of frameworks, Data protection best practices and requirements such as ISO27001, PCI, SOC, and HIPPA
  • Knowledge of security/access control technologies (AD, ADFS, SAML, SLDAP, OAuth)
  • Work experience as a developer, and software security engineer
  • Strong technical knowledge of techniques, standards and capabilities for authentication, authorization, applied cryptography, security vulnerabilities and remediation
  • Software development experience (Java, JavaScript, .NET, C#) and scripting (PowerShell, Python, Perl)
  • In-depth experience identifying and protecting against web application vulnerabilities.
  • Application security tools experience - Burp Suite, Appscan, OWASP
  • Strong knowledge of browser security model, mobile app security, crypto and network security
  • An understanding of application development methodologies e.g. Agile
  • Experience with one or more Cloud Service Providers (AWS, GCP, Azure, etc.)
  • Knowledge of databases and container, API security
  • Experience with source code analysis and vulnerability/penetration scanning tools
 
skills: Requirements and Qualifications:

  • 3-5 +years of development or security-related experience
  • Certification (Security +, CISSP, CSSLP, GIAC, GWAPT, GWEB) one or more preferred
  • Working Knowledge of frameworks, Data protection best practices and requirements such as ISO27001, PCI, SOC, and HIPPA
  • Knowledge of security/access control technologies (AD, ADFS, SAML, SLDAP, OAuth)
  • Work experience as a developer, and software security engineer
  • Strong technical knowledge of techniques, standards and capabilities for authentication, authorization, applied cryptography, security vulnerabilities and remediation
  • Software development experience (Java, JavaScript, .NET, C#) and scripting (PowerShell, Python, Perl)
  • In-depth experience identifying and protecting against web application vulnerabilities.
  • Application security tools experience - Burp Suite, Appscan, OWASP
  • Strong knowledge of browser security model, mobile app security, crypto and network security
  • An understanding of application development methodologies e.g. Agile
  • Experience with one or more Cloud Service Providers (AWS, GCP, Azure, etc.)
  • Knowledge of databases and container, API security
  • Experience with source code analysis and vulnerability/penetration scanning tools

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs

    DevOps Engineer

  • location: Saint Louis, MO
  • job type: Contract
  • salary: $59 - $63 per hour
  • date posted: 11/12/2018

    Mechanical Engineer

  • location: Saint Louis, MO
  • job type: Permanent
  • salary: $75,000 - $100,000 per year
  • date posted: 11/14/2018

    Imaging Engineer

  • location: Saint Louis, MO
  • job type: Temporary
  • salary: $35 - $40 per hour
  • date posted: 4/2/2018