Note: The job is a remote job and is open to candidates in USA. GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. The Application Security Engineer will run various security tools, collaborate with developers, and manage application security tooling to enhance the security posture of clients.
Responsibilities
- Run client SAST, DAST, and SCA tools, review outputs and provide recommendations
- Implement integrations for tools into pipelines, ticketing systems, etc
- Collaborate with developers to provide secure design guidance and remediation strategies
- Familiarity with CI/CD systems (i.e. GitHub) and integrating software security tools into the development workflow
- Strong understanding of web application security principles and best practices
- Manage, maintain and operate application security tooling, including configuration, tuning, and automation
Skills
- 3+ years of experience in an Application Security focused position
- Experience with multiple SAST/DAST/SCA Application Security tools (Checkmarx, Veracode, Synk, Invicti, Semgrep, Blackduck, etc.)
- Manual testing tools such as Burp Suite Pro
- Experience with the integration of tools into development pipelines
- Experience understanding and mitigating Application Security related vulnerabilities
- Experience with reviewing source code written in JavaScript, Python, Java, C++, PHP, or C#
- Integrated Development Environment (IDE) and Continuous integration / Continuous Delivery (CI/CD) Pipeline tools and processes (e.g. Azure Dev Ops, Jenkins, Bamboo, etc.)
- Secure Development Lifecycles and experience remediating technical vulnerabilities identified by web application scanning tools
- Information Systems architecture, security control design, and development experience
- Embraces emerging technologies, including AI tools, to work smarter, solve problems, and drive better business outcomes
- Prior experience in a software development role
Benefits
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Company Overview