We are looking for a passionate Application Security Engineer to join our team in Irving, Texas. You will be a key contributor to direct security architecture and design for a talented engineering team working closely with the business team to meet requirements. You will demonstrate your ability to work closely with scrum teams and information security to deliver high quality, high-value company initiatives that will help grow our leadership position in the industry. You'll have an integral part in helping us enhance our platforms to reduce costs, increase revenue, improve system scalability and broaden the market to propel our growth. You'll be accelerating the company growth by thinking beyond the norm and making a significant contribution to our corporate initiative of flawless execution.
location: Irving, Texas
job type: Permanent
salary: $95,000 - 140,000 per year
work hours: 8am to 4pm
The primary focus of this position is to ensure that our platform is secure by design and to guide software delivery teams to achieve this goal. You will achieve this though the following: - Act as liaison between Security and software development teams - Have an Agile mindset and are value-focused and guided by the Lean-Agile principles. - Work closely with agile software development teams during the design and development process to guide secure feature design and secure coding practices. - Develop application threat models for web, mobile, and public API's, and mitigation strategies for vulnerabilities identified. - Teach scrum teams how to develop and maintain feature level threat models, and mitigate the vulnerabilities identified. - Conduct static and dynamic code analysis using industry standard tools to support product release cycles. - Perform manual and automated code reviews. - Develop, and teach secure coding standards and practices. - Participate in Web / Mobile application security assessments and penetration testing on projects and/or releases; produce detailed risk reports with identified vulnerabilities and remediation recommendations. - Evaluate, track, and ensure compliance of high and critical vulnerabilities; develop, maintain and update scorecards to reflect vulnerabilities and communicate to teams and team leaders.
- Experience level: Experienced
- Minimum 5 years of experience
- Education: Bachelors (required)
- Application Security
- C# (2 years of experience is preferred)
- .NET (1 year of experience is required)
- Azure (e.g. Cloud Services, Active Directory, Open ID Authentication)
- OWASP (1 year of experience is required)
Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.