Application Security Engineer / Penetration Tester

About The Position

Requirements

• 3+ years of application penetration experience and software engineering skills.
• Experience with enterprise software/systems using languages such as C#, Java, Ruby, Go, Python, etc.
• Proven experience in creating detailed penetration test reports for executives and developers.
• Strong experience with the OWASP testing guide.
• Familiarity with multiple web frameworks and technologies, including JavaScript, XML, SOAP, and JSON.

Responsibilities

• Independently plan and execute penetration tests.
• Document penetration tests adhering to industry best practices.
• Promote and inspire software security best practices.
• Assist stakeholders in developing features with security at the forefront.
• Create comprehensive threat models for proposed features.
• Work with third parties to replicate reported security vulnerabilities.
• Collaborate with R&D teams to develop and implement fixes.
• Verify results from automated vulnerability assessment tools.
• Perform manual penetration tests using both manual methods and automated tools.
• Coach and train developers on best security practices.

Benefits

• Medical, dental, and vision coverage.
• Life and AD&D insurance.
• Short and long-term disability coverage.
• Paid time off.
• Paid parental/maternity leave.
• Participation in a 401(k) program with company match.
• Flexible, diverse, and international work environment.
• Career progression pathways and mentoring programs.
• Corporate Responsibility Employee Programs.