Associate Cybersecurity Engineer (AppSec)

Формат работы

hybrid

Тип работы

fulltime

Грейд

junior

Английский

Страна

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Associate Cybersecurity Engineer (AppSec): Safeguarding enterprise systems and applications through vulnerability management and application security with an accent on identifying and mitigating threats across infrastructure and application layers. Focus on implementing SAST/DAST/IAST tools, integrating security into CI/CD pipelines, and driving remediation efforts.

Location: Hybrid (4 days onsite, 1 day remote) in Irving, Arlington, or Fort Worth, Texas, USA

Company

hirify.global provides automotive financing and financial services for General Motors customers.

What you will do

Maintain and build skill sets in cybersecurity triage, investigation, and response activities.
Design and implement security solutions for Vulnerability Management (VM) and AppSec tools including SAST, DAST, and IAST.
Perform vulnerability assessments and penetration testing for applications and systems to drive remediation.
Collaborate with DevOps and operations teams to integrate security controls into workflows and Infrastructure as Code (IaC).
Monitor and analyze system logs and security alerts to detect unauthorized access or anomalies.
Create security metrics, vulnerability trends, and risk reports for leadership.

Requirements

Understanding of vulnerability management processes, CVSS scoring, and remediation strategies.
Experience with application security tools such as Veracode, Checkmarx, Burp Suite, or OWASP ZAP.
Knowledge of secure software development lifecycle (SDLC) and DevSecOps principles.
Familiarity with Kubernetes and cloud-native security for AWS, Azure, or GCP.
Scripting and automation skills using Python or Bash for vulnerability scanning workflows.
Education: High School Diploma required; Bachelor’s Degree in a related field strongly preferred.

Nice to have

Security certifications such as CISSP, CCNP-Security, GIAC, CEH, or CPTS.
0-2 years of experience in Cybersecurity, Information Security, Network Engineering, or Application Development.

Culture & Benefits

Comprehensive benefits package including 401K matching and tuition assistance.
12 weeks of 100% paid bonding leave for new parents.
GM employee auto discount and community service pay.
Flexible hybrid work environment (4 days in office).
Mission-focused environment with high leadership visibility and direct reporting to the CEO.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →