Senior Security Engineer REMOTE

Must BE USC or GC

REMOTE NO THIRD PARTY

100% REMOTE

cyber security, Pen tester, Security developer

We are looking for a Senior Security Engineer.

Application Security consulting to remediate critical App Sec vulnerabilities in 2 of these languages: Java, Python, and Javascript code (3+ Years of experience with all 3 coding languages preferred). Strong knowledge of Java and Python required.

Contract One

Requirements

• Must be able to read code and look for anomolies, issues/errors
• OWASP top 10 and SANS 25 (Required)
• 5 to 7 years minimum total of professional experience
• 3+ years Secure Application Coding practices in Java, Python, Javascript (2 out of 3 is ok)
• Triage for false positives, prioritizing findings and advising developers in remediating findings from application security tools (static analysis, SCA and infrastructure as code)
• Knowledge of SAST, IaC and SCA tools like Snyk.io, Veracode, Synopsys etc (Snyk.io preferred)
• 2+ years of experience using defect management systems and source code control systems (JIRA and Gitlab are preferred)
• Experience with integrating and configuring AppSec tools (Snyk.io preferred) with Gitlab hooks and Gitlab CI , and Developer IDEs
• Nice to have: Familiarity with services and platforms used for deployment Docker, Kubernetes, AWS Services