Similar Jobs
See allApplication Security Engineer
Constructor
Europe
Security
OWASP
API
Senior Application Security Engineer
Branch
US
SAST
DAST
SCA
Senior Application Security Engineer
Prolific
UK
Application Security
Python
Threat Modeling
Application Security Engineer
TRM Labs
Global
Application Security
Python
Threat Modeling
Application Security Engineer
Edgesource Corporation
US
SAST
DAST
SCA
Key Responsibilities:
- Execute threat modeling and security design reviews for web applications and APIs.
- Conduct security testing during development and pre-release, utilizing both manual and automated methods.
- Build and maintain security pipelines, including SAST and DAST, within the software development lifecycle.
SBOM and Process Management:
- Implement and oversee Software Bill of Materials generation and consumption workflows.
- Integrate SBOM tooling into existing CI/CD pipelines to enhance software supply chain security.
- Collaborate with development teams to ensure effective vulnerability remediation.
Technical Qualifications and Collaboration:
- Possess 3-5 years of experience in application security for web applications and APIs.
- Demonstrate proficiency in scripting languages like Python or JavaScript and tools such as OWASP ZAP or Snyk.
- Maintain security guidance based on OWASP best practices and provide training to development teams.
- Stay informed on the latest application security threats, tools, and industry standards.
Constructor Knowledge
Constructor Knowledge is a technology company focused on providing search and discovery solutions. Based on the posting's professional tone and mention of teams, it appears to be an established company with a collaborative and security-focused culture.