Application Security Engineer

Augment Jobs • Austin, TX, US • 5m ago

Overview: We are looking for a talented and experienced Application Security Engineer to join our team. As an Application Security Engineer, you will be responsible for securing our applications throughout the software development lifecycle. You will collaborate closely with development teams to integrate security practices, conduct code reviews, and implement security controls to identify and mitigate vulnerabilities. Your expertise in application security, secure coding practices, and threat modeling will be crucial in ensuring the confidentiality, integrity, and availability of our applications.

Roles And Responsibilities

Collaborate with development teams to integrate security practices, requirements, and controls into the software development lifecycle (SDLC).
Conduct security assessments, code reviews, and penetration testing to identify and mitigate security vulnerabilities in applications.
Implement and manage application security tools and technologies to automate security testing and monitoring (e.g., SAST, DAST, IAST).
Perform threat modeling and risk assessments to identify potential security threats and design appropriate mitigations.
Provide guidance and support to developers on secure coding practices, security requirements, and vulnerability remediation.
Stay current with emerging threats, vulnerabilities, and industry best practices in application security.
Participate in incident response activities related to application security incidents, including investigation, containment, and remediation.
Collaborate with cross-functional teams to define and implement security policies, standards, and procedures for application security.
Document and communicate security findings, recommendations, and best practices to technical teams and management.
Conduct security training and awareness sessions for development teams to promote security awareness and knowledge.

Skills And Qualifications

Bachelor’s degree in Computer Science, Information Security, or related field; relevant certifications such as CISSP, CSSLP, or equivalent are preferred.
Proven experience as an Application Security Engineer, Software Security Engineer, or similar role with a focus on application security.
Strong understanding of secure coding principles, OWASP Top 10 vulnerabilities, and common application security risks.
Experience with application security testing tools and technologies (e.g., Fortify, Veracode, Burp Suite).
Hands-on experience with secure development practices and methodologies (e.g., Agile, DevSecOps).
Knowledge of web application frameworks, API security, and cloud security principles.
Familiarity with regulatory compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) and security frameworks (e.g., NIST Cybersecurity Framework).
Excellent analytical and problem-solving skills with the ability to analyze complex application security issues and propose effective solutions.
Strong communication and interpersonal skills with the ability to collaborate effectively with technical and non-technical stakeholders.

Compensation

The salary for this position will be competitive and commensurate with experience and skills.
Comprehensive benefits package including health insurance, retirement savings plan, and professional development opportunities.

Company Culture

We promote a collaborative and innovative work environment where integrity, creativity, and continuous learning are valued.
Our culture emphasizes teamwork, transparency, and a commitment to delivering secure and reliable applications to our customers.

Application Process

Interested candidates should submit a resume and cover letter outlining their qualifications and experience as an Application Security Engineer.
Selected candidates will undergo interviews and may be asked to demonstrate their technical skills and knowledge through practical assessments or simulations.
We look forward to welcoming a dedicated Application Security Engineer who can contribute to our organization’s success by ensuring the security and resilience of our applications effectively!