This Job Vacancy has Expired!

Application Security Engineer

Posted on Jul 30, 2020 by Gazelle Global Consulting

Not Specified, Sweden
IT
Immediate Start
Annual Salary
Contract/Project


Application Security Engineer


One of my clients based in Malmo, Sweden is looking for a Application Security Engineer for a 6-12 month contract. Contract can start remote until COVID-19 die down.

Primary Responsibilities:



  • Partner with Application Development, DevOps, Quality Engineering, Quality Assurance, and Infrastructure teams to support a continuous "Secure by Design" model to integrate into the full Software Development life cycle.

  • Discover opportunities to drive integration& automation of application& cloud security controls into CI/CD pipelines.

  • Lead vulnerability management for application and AWS cloud security and provide remediation support and security expertise.

  • Track and report security vulnerabilities and remediation activities to Ikano Security

  • Design threat models to assess security risks with new applications or features.

  • Perform application security reviews, verify cloud security configuration, and assess for secure code development.

  • Communicate technical application security concepts and recommendations to developers, architects, and functional leaders.

  • Promote secure coding practices within the software development teams.

  • Continually research and maintain awareness of current vulnerabilities, exploits, and application related cyber threats.

  • Provide support, maintenance & policy creation, for SAST, DAST, SCA, Container Security & WAF solutions.


Experience and Skills needed:



  • Minimum 5 years of direct experience in application security, software development security, and/or application penetration testing.

  • Application or security certifications preferred (eg, CISSP, CCSP, CSSLP, OSCP, GWEB, CEH, etc.)

  • Experience working with fast moving Agile development teams

  • Experience in Cloud security including AWS.

  • Developing, integrating, and enabling security engineering test automation into a CI/CD pipeline.

  • Good knowledge or Development experience with Java, JavaScript, NodeJs, Angular, REST API a must.

  • Experience with any of the application security tools as SonarQube, OWASP Dependency Track, OWASP Dependency Check, Portswigger BurpSuite.

  • Experience with security in containerized infrastructure (Docker, Kubernetes, EKS)

  • Hands-on on container security tools like Anchor, Docker Bench, Kube Bench

  • Know and recognize application security issues such as cross-site Scripting, cross-site request forgery, authorization, injection attacks, etc. in code and provide remediation recommendations.

  • Subject matter expert of OWASP or SANS.


Local Technical Skills
Apps Security, Container Security, AWS Security, DevSecOps; Certifications: CISSP/CCSP/CSSLP/OSCP/G


Languages Required:
English


Apply now immediate interview!




Reference: 918822689

Set up alerts to get notified of new vacancies.

Similar Jobs

Application Security Engineer - Sweden

Not Specified, Sweden

Annual Salary