Hybrid Application Security Engineer

Posted last week

Apply now

About the role

  • Application Security Engineer improving security across software lifecycle integrating vulnerabilities remediation in healthcare software. Collaborating with IT Development and Infrastructure teams.

Responsibilities

  • Analyze vulnerabilities, fix issues in applications, and help development teams build secure software by design.
  • Resolve vulnerability issues and conflicts related to application code, libraries and dependencies
  • Help reduce technical debt and improve overall application security maturity through contributions to decision making process on vulnerability remediation and clarify options
  • Integrate security tooling into CI/CD pipelines (DevSecOps)
  • Support development teams with secure coding practices
  • Participate in threat modeling and security design reviews
  • Focus on application security while cooperating with counterpart security engineers in charge of patch and vulnerability treatment at OS level.

Requirements

  • Strong software engineering background (you can read and modify production code)
  • Experience in application security or secure software development
  • Solid understanding of OWASP Top 10 and common application vulnerabilities
  • Hands-on experience with vulnerability remediation at code land configuration level
  • Familiarity with CI/CD pipelines and DevSecOps practices
  • Ability to analyze scanner findings and distinguish real issues from false positives
  • Comfortable working with developers and security teams in a HA environment
  • Experience with threat modeling
  • Knowledge of cloud security
  • Exposure to vulnerability management processes

Job title

Application Security Engineer

Job type

Experience level

Mid levelSenior

Salary

Not specified

Degree requirement

No Education Requirement

Tech skills

Location requirements

Report this job

See something inaccurate? Let us know and we'll update the listing.

Report job