Job Description :
You will:
Be an Application Security driver and evangelist inside client
Run threat modeling for cloud and enterprise application scenarios
Guide development teams in best practices across all stages of the SDLC
Automate and Integrate security into agile development processes and CI/CD pipelines
Assess and exploit client product vulnerabilities
Respond to external reports from customers, researchers, third-party testers, and bug bounties
Build, buy, operate, and maintain application security tools
Monitor and respond to Open Source Software weaknesses and exposures
MUST HAVES:
5+ years of applicable experience
Application security experience with interpreted and compiled programming languages
Application security experience with Windows and Linux binaries
Experience working with teams on multi-tiered, complex web applications (java, ruby, python, C++, etc
White box and black box penetration testing experience
Strong analytical skills and learning agility
Strong interpersonal and communication skills
NICE TO HAVES:
Secure SDLC experience
Previous startup experience
CISSP and/or other security certifications are a plus
BS or MS in Computer science or related