Application Engineer III

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Security, or related field
• 5+ years of experience in application security or related experience
• Professional security certifications preferred (CISSP, CEH, OSCP, or similar)
• Demonstrated experience in vulnerability assessment and penetration testing
• Strong understanding of web application architecture and security controls
• Proficiency in application security testing tools (e.g., Fortify, Checkmarx, Veracode)
• Experience with web application firewalls (WAF) and security controls
• Knowledge of OWASP Top 10 vulnerabilities and remediation strategies
• Familiarity with secure coding practices and SDLC integration
• Understanding of common frameworks and languages (Java, .NET, Python, JavaScript)
• Experience with API security testing and assessment
• Proficiency in penetration testing methodologies
• Knowledge of cloud security principles (AWS, Azure, GCP)
• Understanding of security compliance frameworks (PCI-DSS, NIST, ISO 27001)

Nice To Haves

• Experience with Docker, Kubernetes and 'Serverless' technologies

Responsibilities

• Conduct comprehensive application security assessments and vulnerability scans
• Perform code reviews and identify security weaknesses in applications
• Develop and maintain security testing procedures and methodologies
• Collaborate with development teams to implement security best practices
• Create detailed reports on identified vulnerabilities and remediation recommendations
• Monitor and respond to security incidents related to application vulnerabilities
• Implement and maintain application security tools and platforms
• Provide security consultation during the application development lifecycle
• Develop metrics and KPIs for application security program effectiveness
• Create and maintain documentation for security processes and procedures
• Conduct security awareness training for development teams
• Participate in incident response and vulnerability management activities
• Evaluate new security tools and technologies for potential implementation
• Assist in the development of security policies and standards

Benefits

• Health, Dental, Vision, Employee Assistance Program
• Paid Vacation, Holidays, and Your Birthday off
• Generous Employee Discount on home furnishings
• Professional Development Opportunities
• Ashley Wellness Centers (location specific) and Medical Tourism
• Telehealth
• 401(k) and Profit Sharing
• Life Insurance