Location
Glendale, AZ | United States
Job description
MW Partners is currently seeking a AppSec Engineer to work for our client who is a leader in the insurance industry.
Responsibilities:
- Review detected vulnerabilities, filtering false-positive results and assisting developers as questions arise from findings Advocate for OWASP Application Security Verification Standard (ASVS) as an internal standard Supporting standards-compliance in secure system development, support, assessment, remediation, and configuration/change management Conduct security assessments on application code and applications for security flaws, identify potential areas of improvement and provide actionable recommendations to developers.
- Collaborate with cross-functional teams to ensure that security best practices are incorporated into the design and architecture of our applications.
- Keep abreast of the latest security trends, vulnerabilities, and attack vectors and proactively identify potential risks to our applications.
- Proven experience with cloud security posture management and runtime protection Conduct continuous cloud security testing Hands on experience with cloud native application protection in AWS, Azure and/or GCP Experience performing threat modeling with application teams
Requirements:
- Bachelor's Degree in Computer science
- Proficiency with application security testing technologies such as SAST, DAST, SCA, IaC, IAST, RASP, Container Image Scanning, etc.
- Knowledge of common security vulnerabilities and best practices for remediation. Experience with security assessment tools such as static analysis tools, dynamic scanners and open-source library scanners.
- Awareness of application security across multiple verticals such as cloud/service provider, security provider, mobile, appliance Experience with source code management and AppSec testing tools Understanding of CI/CD Automation Familiarity with secure coding standards and practices, such as OWASP Top 10, OWASP Top 10 API.
- Familiar with building repeatable and automated security test suites Experience in application security, secure coding, vulnerability assessment and remediation.
- Understanding of web application architecture, including frameworks, APIs, and protocols.
- Proficiency in programming languages commonly used in application development, such as Java, C#, Python, or JavaScript.
- Knowledge of key security configurations for services such as EC2, S3, RDS and EKS Strong customer service skills
- Customer Service Oriented, Amazon Web Services, Vulnerability Assessment, Scanning, Coding Standards,
- Api, Cloud Security, Python, Change Management, System Development, Application Architecture, Retail Sales, Aws Certified, Information Security, Amazon Elastic Compute Cloud, Continuous Integration/Delivery, Coding, Gcp,
For a confidential discussion or to find out more, contact Nitin Kuntiya on 949-942-8307 or apply now.
Job tags
Salary