Resumo da vaga

Sr. Application Security Engineer

Requisitos e responsabilidades

Conteúdo da vaga extraído em seções para revisão mais rápida.

The Opportunity

    What You'll Do:

    • Security Integration: Work with development and DevOps teams to integrate security into the software development lifecycle (SDLC).
    • Vulnerability Management: Identify, assess, and mitigate security vulnerabilities in applications, infrastructure, and cloud environments.
    • AWS Security: Implement and maintain security controls in AWS, including IAM policies, security groups, VPC configurations, and monitoring.
    • DevOps Security: Collaborate with DevOps teams to incorporate security best practices in CI/CD pipelines, including automated testing, secure code reviews, and infrastructure as code (IaC) security.
    • Threat Modeling: Conduct threat modeling and risk assessments to identify potential security threats and develop mitigation strategies.
    • Incident Response: Assist in developing and executing incident response plans, including identifying and responding to security incidents.
    • Compliance & Best Practices: Ensure that all systems and applications comply with relevant security standards, regulations, and best practices (e.g., OWASP , NIST , ISO 27001).• Security Training: Provide security training and guidance to engineering teams to promote secure coding and infrastructure management practices.
    • Continuous Improvement: Continuously monitor, evaluate, and improve security practices, tools, and processes.

    Who You Are:

    • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
    • 8+ years of experience in application security or a related role.
    • Strong experience with AWS security services and best practices.
    • Experience with DevOps tools and practices, including CI/CD pipelines, containerization, and IaC.
    • Proficiency in at least one programming language (e.g., Python, Go).
    • Strong understanding of web application security (e.g., OWASP Top Ten) and secure coding practices.
    • Familiarity with security tools and technologies such as SAST , DAST , SIEM, and WAFs.
    • Ability to work well in a team environment and collaborate effectively with engineers, developers, and other stakeholders.
    • AWS Certified Security – Specialty or similar certification.
    • Experience with container security (e.g., Docker, Kubernetes).
    • Familiarity with modern authentication and authorization protocols (e.g., OAuth, SAML, JWT). Knowledge of secure coding frameworks and libraries.

    What We Offer (Perks & Benefits)

    • Flexible vacation
    • Medical/dental/vision insurance
    • Traditional/Roth retirement savings options
    • Company-paid disability and life insurance
    • Flexible Spending Account & Limited FSA
    • Family-friendly parental leave, volunteer and voting time off
    • On-demand wellness platform access for you and 5 friends and family
    • PerkSpot discount program for 900+ merchants nationwide
    Vagas similares

    Mantenha uma lista reserva.

    Ver stack
    FocoApplication Security EngineerÁrea da vaga
    Sinal de senioridadeSeniorNível do candidato
    StackAWS, CI/CD, DockerSkills principais
    Localização1 país aceitoElegibilidade

    Stack

    Use estas tags para comparar vagas remotas similares.

    Elegibilidade de localização

    Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.

    Seu perfilPaís não definidoEntre para comparar seu país com esta vaga.

    Fluxo de contratação

    O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.

    1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
    2Abra a página de aplicação da empresa pelo link rastreado.
    3Salve a vaga ou assine oportunidades similares antes de sair.
    Aplicar no site da empresaSite da empresaAbrir link