Role OverviewLead secure application development practices across the software development lifecycle (SDLC). Conduct application security assessments, including static analysis, dynamic analysis, software composition analysis, and manual code reviews. Identify vulnerabilities aligned with OWASP Top 10 and secure coding standards.
What You Will Do
Lead the integration of security testing into CI/CD pipelines and DevSecOps workflows. Support threat modeling exercises and architectural security reviews. Provide guidance on secure configuration of web applications, APIs, and cloud-native applications.
Why It Might Be a Fit
Collaborate with development teams to remediate findings and improve secure coding maturity. Proven organizational and communication skills. Proven configuration management skills.
Requirements
- Bachelor’s degree from an accredited college or university with a major in computer science, information systems, engineering, business, or other related scientific or technical discipline
- At least eight (8) years of experience in application development or application security within an enterprise environment
- At least five (5) years of experience performing application security assessments and integrating security into the SDLC
- Proven organizational and communication skills
- Proven configuration management skills
- US citizen
Benefits
- Employer-subsidized HSA-compliant medical plans with out-of-network coverage and wellness rewards
- Vision and dental PPO plans
- Employer-paid short term disability coverage
- Employer-paid basic life and AD&D coverage
- Voluntary long-term disability
- Voluntary supplemental disability, hospital protection, accident insurance, critical illness and cancer, and whole life policies
- 401k plan with generous employer match
- Professional development and tuition reimbursement up to $5,250 annually
- Employee referral bonus eligibility
- Up to 160 hours of PTO annually, aligned with applicable state leave regulations
- 10 paid holidays
]]>