Senior Application Security Engineer

  • Full time
  • Prague
  • Posted 3 weeks ago

Concentrix

Python (regular)
JavaScript (regular)
Java (regular)
Fortify (advanced)
We are expanding and we are looking Senior Application Security Engineer
 for Poland work at home.
The role:
As a Senior Application Security Engineer you will be passionate about our Application Security process, DevSecOps, security tools implementation and integrations, documentation, providing metrics to leadership team to take informed decision.
This role involved extensive interaction application teams, internal teams in 
Global Security and respective stakeholders to conduct application security architecture reviews and  assessments, provide recommended security controls and remediation
What you need to have is?
  • 8+ Years of experience working in IT and/or IT Security in multiple capacities  
  • Bachelor degree in a relevant field, or an equivalent combination of education and work experience
  • Experience in application security architecture review, threat modeling, DevSecOps, SAST, DAST,  SCA and application Pentest
  • Experience with various application security tools including Threat modeling, SAST, DAST, Software composition analysis and application Pentest
  • Ability to clearly communicate gaps and risks to leadership through verbal dialogue or written communication
  • Experience in analyzing threats of cloud and application components
  • Knowledge of Agile and Scrum processes.
  • Knowledge in current and emerging security technologies, threats and techniques for exploiting security vulnerabilities in the code or application
  • The ability to work both independently and as part of a team. 
  • Ability to be proactive in a rapidly changing environment
  • Excellent written and oral communication skills and ability to work well in a team
  • Fluency in English.
Nice to have:
  • Security certifications such as CSSLP, CISSP, GPEN, ECSA, CEH, CISM, CISA, or equivalent.
  • Experience in OWASP Top 10, CVE/CVSS research and/or bug bounty recognition.
  • Experience in infra vulnerability Management and infra vulnerability assessment tools
  • Experience in data security and governance
  • Experience in development and scripting languages (Java, Javascript/Typescript, Python, PHP, AI-ML, MERN).
Responsibilities:
  • Collaborate with application teams and conduct application security architecture review, SAST, DAST, SCA and application PT, provide recommended security controls and remediation consultation.
  • Conduct periodic application security scan on Internet facing websites of CNX to identify critical vulnerabilities, outdated software and vulnerable open-source components
  • Conduct deep-dive analysis to identify vulnerabilities and their public exploitability, clients and corporate critical/sensitive risk exposure
  • Develop compensating/mitigation controls to reduce the risk of exposure by assessing open vulnerabilities that have challenges in remediation due to business and technical dependency / challenges
  • Enable automated security scanning process to identify the known vulnerabilities in source code, Open-source library, and configuration
  • Perform technology watch related to industry trends and best practices
  • Prepare and provide necessary metrics, detailed reports, artifacts, executive summary and dashboard to leadership on a regular frequency
What do you get from us?
  • Competitive salary based on experience and annual increases based on performance.
  • Ability to work fully remote at home.
  • A strong work/life balance with a focus that we all have – and should have – lives outside of work.
  • Challenging work with the opportunity to personally learn and grow.
  • Professional development opportunities with training.
  • Multicultural work environment and career opportunities (EU and beyond)
  • A bright, passionate, caring team that holds each other accountable and has each other’s backs.
  • MyBenefit program: shopping vouchers and much more
  • Group insurance
About us:
Concentrix, a global customer experience services and technologies company, providing support to the world’s best brands.
Every day, from more than 40 countries and across 6 continents, our 280 000 employees deliver next generation customer experience and help companies better connect with their customers. We create better business outcomes and help differentiate our clients through technology, design, data, process, and people. Concentrix provides services to clients in the following key industry verticals: technology & consumer electronics; retail, travel & ecommerce; banking, financial services & insurance; healthcare; communications & media; automotive; and energy & public sector.

To apply for this job please visit cz.talent.com.