I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team.
Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more.
Other responsibilities include:
- Provide guidance on Application Security & DevSecOps best practices
- Develop security testing plans and integrate security into the software development lifecycle
- Help to deliver overall Application Security strategy
- Perform and oversee security testing and manage remediation of identified vulnerabilities.
- Collaborate with the architecture and development teams to review the design and code for security vulnerabilities.
- Manage aspects of an existing bug bounty program working with Security researchers
- Identify Application Security risks in new projects and developments
- Collaborate closely with Engineering teams to ensure security is embedded into product development and sign-off on security prior to go-live
- Help to improve overall security posture of the business
Desirable experience for the Application Security Engineer
- Experience working in a similar Application Security role
- Software Development experience and knoweldge of how to integrate security into code
- Security testing & Application Security experience
- In depth knowledge of Security vulnerabilities and OWASP framework
- Experience promoting security awareness
- Ability to work closely with Engineering & Development teams to communicate security risks
- Security certifications are desirable but not required