Vacancy expired!
Security Software Engineer Job Description
Senior Security Software Engineer - CoStar GroupOVERVIEW CoStar Group, Inc. (NASDAQ - CSGP) ( www.costar.com ) is commercial real estate's leading provider of information and analytic services.Founded in 1987, CoStar conducts expansive, ongoing research to produce and maintain the largest and most comprehensive database of commercial real estate information. Our suite of online services enables clients to analyze, interpret and gain unmatched insight on commercial property values, market conditions and current availabilities.In this role, you will secure software and applications that power the worldwide commercial real estate market. Work with 1000 software, QA, and operations engineers to secure code in the pipeline and are run time. This is an opportunity to work with an advanced security team that is responsible for securing the data and products behind 35 websites serving 75M global visitors/mo, running on top of multiple private and public clouds. We are looking for a passionate, technical application security engineer to lead key security activities across the software development lifecycle. This position will work with software development teams, devops, and security to drive and shape the way our employees and engineers build, deploy, and operate applications.BASIC QUALIFICATIONS:- Bachelor's Degree (preferably in a relevant field - Computer Science/Cyber Security)
- Minimum 5 years total experience in a technical role such as security or software engineer with at least 2 years as a software developer.
- Design and implementation of secure coding frameworks
- Software development experience in a common programming language: C# (preferred), Java, C/C, Python, or Go
- Experience in a development and operations role, implementing security through code development and infrastructure code reviews, establishing security ecosystems utilizing APIs and event driven security response
- Cloud WAF - Akamai Kona, AWS WAF, Arbor, Prolexic, or similar tools.
- Scripting/programming skills - Python, PowerShell, GoLang, Perl, JavaScript, .NET, API Integration
- Security tooling automation in CI/CD pipelines and IDE interfaces including Static Application Security Testing (SAST) and Static Application Analysis (SCA) solutions such as Veracode, CheckMarx, AppScan, X-Ray, Synopsys, or Snyk
- Dynamic application security testing (DAST) through Metasploit, Burpsuite, OWASP ZAP or similar tooling
- Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug
- Life, legal, and supplementary insurance
- Commuter and parking benefits
- 401(K) retirement plan with matching contributions
- Employee stock purchase plan
- Paid time off
- Tuition reimbursement
- On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes, as well as Segways and bikes available for use during the day
- Complimentary gourmet coffee, tea, hot chocolate, prepared foods, fresh fruit, and other healthy snacks
Vacancy expired!