Facebook pixel

Application Security Engineer
Posted on 11/12/2022
INACTIVE
Locations
New York, NY, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Java
Python
Requirements
  • B.S. degree in Computer Security, Computer Science, Engineering or relevant field, or equivalent work experience
  • Minimum of 5 years of Technology experience and 2 of those years in Application Security
  • Relevant certifications such as CISSP, CISM, CISA
  • Expert in at least one of the following languages: Python, Go, Java
  • Strong understanding of network technologies
  • Working knowledge and experience with multiple security domains (e.g., application security, vulnerability reduction, data protection, encryption, logging and monitoring, network security)
  • Strong understanding of risk and its integration into threat modelling
  • Subject Matter Expert on Secure Software Development Life Cycle (SSDLC) (e.g., risk assessments, threat modeling, static code analysis, code reviews and dynamic application scanning, etc.)
  • Experience working with modern development practices (e.g., micro services, containers, orchestration, continuous integration & delivery pipelines, etc.)
  • Experience working in regulated industries leveraging information security management frameworks and industry recognized best practice (e.g., NIST, ISO, SOC)
Responsibilities
  • Act as a subject matter expert, providing support and leading the technical triage for application issues
  • Work with project and development teams shadowing projects and enhancements to ensure minimal impact to production environments
  • Identify and promote tools and processes to improve application software quality and enhance SDLC activities
  • Build automation for security testing into the CI/CD pipeline
  • Perform technical security assessments, threat modeling, code audits, and design reviews with engineers to ensure effective and secure development
  • Identify and track remediations for code and configuration vulnerabilities, ensuring that security fixes are applied on a timely basis
  • Manage integration with vulnerability check tools such as Static Code Analysis and Dynamic Code Analysis
  • Train developers on secure coding techniques to ensure the security of application code releases with code reviews and automated code analysis tools
  • Provide leadership for application vulnerability scanning and penetration testing remediation
  • Perform security reviews including threat modeling using MITRE and STRIDE frameworks
Desired Qualifications
  • This range is not inclusive of any potential amounts
Genesis Global Trading

51-200 employees

Full-service digital currency brokerage platform
Company Overview
Genesis Global’s mission is to enable financial market organizations to innovate at speed through their low-code platform that supercharges developers to build resilient, performant and secure applications with unmatched efficiency and scale.
Benefits
  • Medical, dental, & vision coverage
  • FSA & HSA
  • Tax-free transit benefits & other supplemental benefits available
  • Flexible time off
  • Generous parental leave