[Remote] Application Security Engineer (Remote in the U.S.)
Note: The job is a remote job and is open to candidates in USA. GuidePoint Security is a rapidly growing cybersecurity company that provides trusted expertise and solutions to help organizations minimize risk. They are seeking an Application Security Engineer to run security tools, collaborate with developers on secure design, and manage application security tooling. This position allows for 100% remote work within the U.S.
Responsibilities
- Run client SAST, DAST, and SCA tools, review outputs and provide recommendations
- Implement integrations for tools into pipelines, ticketing systems, etc
- Collaborate with developers to provide secure design guidance and remediation strategies
- Familiarity with CI/CD systems (i.e. GitHub) and integrating software security tools into the development workflow
- Strong understanding of web application security principles and best practices
- Manage, maintain and operate application security tooling, including configuration, tuning, and automation
Skills
- Bachelor's degree in Computer Science, Information Systems or Information Security, and 4 years progressive baccalaureate experience as a security engineer, security analyst or related position working in Application Security
- Must have 2 years of experience with each of the following: Integrated Development Environment (IDE) and Continuous integration / Continuous Delivery (CI/CD) Pipeline tools and processes (e.g. Azure Dev Ops, Jenkins, Bamboo, etc.)
- Secure Development Lifecycles and experience remediating technical vulnerabilities identified by web application scanning tools
- Information Systems architecture, security control design, and development experience
- Manual testing tools such as Burp Suite Pro
- Knowledge of and experience with SAST/DAST/SCA Application Security tools (Invicti (DAST) or Checkmarx (SAST/SCA)
- Experience with the integration of tools into development pipelines
- Experience understanding and mitigating Application Security related vulnerabilities
- Experience with reviewing source code written in JavaScript, Python, Java, C++, PHP, or C#
Benefits
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
- Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
Company Overview