Job Description :
Application Security Engineer
Santa Clara, CA Or Tempe, AZ
12 Months Contract
Responsibilities:
* Act as liaison between Security and software development teams
* Assist development teams implementing secure SDLC practices
* Threat model web applications and work with development team throughout the SDLC
* Perform web application vulnerability assessments and penetration tests
* Provide security and compliance requirements for software development projects
Required Qualifications:
* BS in Computer science or equivalent experience
* Experience in web application security testing (assessment/penetration testing)
* Strong analytical skills and ability to quickly learn new skills
* Good verbal and written communication skills
* Familiarity with OWASP guidelines
* Knowledge of agile and secure SDLC
Additional Preferred Qualifications:
* One or more Certifications (CISSP, GWEB, GPEN, GWAPT, OSWE, OSCE, OSCP)
* Software development or scripting experience (Python, Shell, Java, json, Scrum, Jira, etc)
* Familiarity with network and web application protocols (Http, Https, TCP/IP, SAML 2.0, OAuth 2.0, Rest APIs, etc)
* Knowledge or experience implementing SDLC frameworks like OpenSAMM or BSIMM
* Database knowledge