Application Security Specialist

About The Position

Requirements

• A Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience.
• 3-5 years of professional experience in application security or a closely related field.
• Strong proficiency with security concepts, common vulnerabilities (e.g. SQL Injection, XSS, CSRF), and vulnerability assessment tools.
• Hands-on experience with threat modeling, code reviews, and vulnerability remediation.
• Excellent organizational and communication skills, with the ability to explain complex security topics to technical and non-technical audiences.
• The ability to work independently and manage priorities effectively.

Nice To Haves

• Relevant security certifications such as CISSP, CSSLP, or CEH.
• Hands-on experience with secure development in languages like Java, C#, Python, or JavaScript.
• Familiarity with threat modeling frameworks like STRIDE, DREAD, or PASTA.

Responsibilities

• Conduct code scanning and analysis to identify vulnerabilities in the application code.
• Perform threat modeling to anticipate and address potential security risks during the application development process.
• Review code for security flaws and provide actionable feedback to development teams.
• Collaborate with developers to integrate secure coding practices into the software development lifecycle.
• Assist in the creation and maintenance of security documentation, policies, and procedures.
• Meeting regularly with Development teams to address compliance, SDLC, and OWASP standards.
• Stay updated on the latest security trends, threats, and compliance requirements to proactively protect applications.
• Work with the teams to document the scan results and follow up with corrective action plans designed by Engineers and Architects.
• Previous application development.