Plus
Включить Plus
Назад
Company hidden
14 часов назад

Application Security Engineer

80 000 - 110 000$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
middle/senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Application Security Engineer: Performing security testing on web applications, mobile apps, and microservices with an accent on identifying vulnerabilities and secure coding practices. Focus on automating testing workflows, assessing risk, and educating development teams to mitigate security impacts.

Location: Must be based in the United States

Salary: $80,000–$110,000 annually

Company

hirify.global is a national real estate analytics and valuation technology company providing AI-driven data solutions to build confidence in real estate decisions.

What you will do

  • Plan and execute application security testing across the SDLC for web, mobile, and microservices.
  • Identify vulnerabilities and assess risk levels to provide actionable remediation recommendations.
  • Develop automation tools to improve the efficiency of security testing and remediation processes.
  • Collaborate with development and product teams to integrate secure coding practices.
  • Communicate security findings and operational risks to both technical and non-technical stakeholders.
  • Provide training and education to engineering teams on secure development practices.

Requirements

  • Must be based in the United States
  • 3-5 years of proven experience in application security testing (DAST, SAST, OSS, SCA, IAC).
  • Thorough understanding of the Software Development Life Cycle (SDLC) and OWASP Top Ten.
  • Bachelor’s degree in a technical field or equivalent work experience.
  • Strong verbal and written communication skills for technical and non-technical audiences.
  • Ability to prioritize tasks and manage time effectively in a remote environment.

Nice to have

  • EC-Council Certified Application Security Engineer (C|ASE)
  • (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP)
  • GIAC Web Application Penetration Tester (GWAPT)

Culture & Benefits

  • Comprehensive medical, dental, and vision insurance.
  • 401(k) retirement plan with employer match.
  • Paid time off (PTO) and paid holidays.
  • Company profit-sharing bonus program and referral bonuses.
  • Access to virtual primary care and mental health resources.
  • Career and skill development resources.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →