Vacancy expired!
Lead Engineer, Application Security in Charlotte, North Carolina Posted 08/08/22
AccruePartners values our contract and consulting employees. We offer a competitive benefits package to meet the diverse needs of all our contractor and consulting employees and their family members. Here is a listing of what our company offers: 401(k) Medical, Dental, Vision, Life Insurance, Employee Assistance Program, Medical and Prescription Drug, Short and Long-Term Disability Insurance. THE TEAM YOU WILL BE JOINING:- High-Growth Publicly traded organization with revenues over $15B; highly diversified with over 45,000 customers and 100+ locations in North America
- Highly acquisitive company is one of the fastest growing in North America; more than 84,000 employees at 229 locations globally
- Multi-billion-dollar business model that embraces a fast-paced and innovative culture with heavy growth by way of acquisition
- Company offers upward mobility and promotion from within
- Excellent benefits and team-oriented work environment
- Global company with an outstanding reputation and great tenure
- Represent the Global Information Security team and collaborate with technical leads, developers, DevOps engineers, project managers, third party vendors and business unit stakeholders
- Work with application teams to ensure that security controls are followed across the SDLC
- Guide and perform security activities including risk assessments, vulnerability scans, manual testing/verification of findings, and review of findings with application teams
- Testing and analysis, code review, static and dynamic (including mobile) application testing, and manual assessment of applications
- Work with application teams to establish remediation plans for complex issues
- Consume and prioritize automated scan results; provide remediation guidance and help reduce overall risk to the organization's applications
- Review third party assessment results, assist teams to ensure that results are understood and plans for remediation are put in place and followed
- Communicate application security program fundamentals and processes teaching coworkers to follow proper InfoSec standards and practices
- Partner with the business/developer teams; promote secure coding practices and regular testing of applications with both static and dynamic testing tools
- Bachelor's degree (or equivalent) in relevant field
- Minimum 5 years in similar roles
- Experience with scripting/automation
- Ability to read and write Python
- Experience working with databases, understanding and writing queries
- Deep knowledge of security technologies, protocols, concepts such as networks, system/application hardening techniques, encryption, application firewalls, application development processes, application vulnerabilities, DevOps, etc.
- Strong knowledge of OWASP and familiarity with web application vulnerabilities and how to remediate them
Vacancy expired!