Application Security Engineer
San Jose, CA 95131 United States
Job Description
Job Title: Application Security Engineer
Location: San Jose, CA (Hybrid onsite)
Duration: 6 month cth
Job Description:
- Work closely with SecOps team, architecture board to outline standard application security design and proactively fix software and TPS vulnerabilities
- Participate in all aspects of Secure Software Development Lifecycle
- Analyse and interpret the results of assessment and test, providing detailed reports that outline identified vulnerabilities, potential impact, and implement remediation strategies
- Assist in developing and implementing security best practices, standards to enhance the application’s security posture
- Validate security test plans and automation
Qualifications:
- 7-10 years of relevant experience
- Hands on experience with the OWASP Top 10 and other security concerns for web applications
- Should have sound understanding on security related attacks:
- Code Injection attacks
- Database/SQL injection attacks
- Shell Injection attacks
- Session hijacking
- Man in the middle attack, DOS attacks
- CORS, CSRF, XSS etc.
- Hands on experience with SAST, DAST and SCA scans, interpreting results and providing remediation
- Deep understanding on how to interpret and asses CVEs (Common Vulnerability and Exposures) as found by scanning tools (Snyk, WIZ etc)
- Experience in authentication and authorization mechanisms such as JWT, session-based authentication, and role-based access control (RBAC)
- Track record of staying current with trends, techniques, tools and processes that drive improvement of security posture of applications
- Knowledge deploying applications to Tomcat
- Experience working with MySQL.
Share This Job:
Related Jobs:
About San Jose, CA
Are you sure you want to apply for this job?
Please take a moment to verify your personal information and resume are up-to-date before you apply.