Plus
Включить Plus
Назад
Company hidden
18 часов назад

Senior Application Security Engineer (Cybersecurity)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Application Security Engineer (Cybersecurity): Maintaining a resilient security posture for highly visible applications with an accent on SAST/DAST implementation and remediation of application flaws. Focus on performing threat modeling, implementing enterprise-wide security controls, and ensuring federal compliance with NIST and FedRAMP standards.

Location: Remote (Must be a U.S. citizen and able to obtain a Public Trust clearance)

Company

hirify.global provides adaptive innovation and advanced technologies to support national security and critical civilian missions.

What you will do

  • Maintain a resilient security posture for highly visible applications in collaboration with clients.
  • Remediate application security flaws in conjunction with the application security team.
  • Lead security discussions with application teams to prescribe best practices within the development lifecycle.
  • Perform dynamic and static application performance testing and generate threat models using tools like SD Elements and Burp Suite.
  • Implement enterprise-wide security controls and utilize the latest OWASP frameworks.

Requirements

  • Must be a U.S. citizen and have the ability to obtain a Public Trust clearance.
  • 6+ years of IT experience, including 3+ years supporting SAST, DAST, and IDE Plug-in environments using Burp Suite.
  • 1+ year of experience supporting SAST/DAST environments using Veracode.
  • 2+ years of experience with Java, Python, .NET, or C#.
  • 2+ years of experience working in Linux-based environments, including troubleshooting website connectivity.
  • Knowledge of federal compliance standards such as NIST 800-53, FIPS, or FedRAMP.
  • IT-related Bachelor's Degree.

Nice to have

  • Experience with Interactive Application Security Testing (IAST) capabilities and tools.
  • Experience with HackerOne or Selenium.
  • Proficiency in writing bash scripts.
  • Experience with OWASP ZAP or Burp Proxy.

Culture & Benefits

  • Fully remote work opportunity.
  • A culture defined by the "6Hs": Happy, Helpful, Honest, Humble, Hungry, and Hustle.
  • Environment focused on teamwork, mutual respect, and relentless work ethic.
  • Mission-driven work protecting vital national interests.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →