JOBSEARCHER

Application Security Engineer

Position: Application Security Engineer (Vulnerability/Penetration Testing)Location: Austin, TX (Onsite)Mode: Full-TimeJob Description:Primary Skillset: Web and API PentestSecondary: Splunk, B2B security architectureProven expertise as an Application Security Engineer or similar roleExperience in conducting web application penetration testing and API PentestingExperience with security assessment techniques such as SCA, static code analysis(SAST) , dynamic application testing (DAST), and Manual penetration testingExperience with security engineering practices, including web application security, perimeter security, authentication and authorization protocols, cryptography, PKI, automation, and other software security disciplinesExperience with Security Reviews and Threat Modelling to integrate security tools and processes into the DevOps pipelineDeep understanding of secure coding practices, common application security vulnerabilities (e.g., OWASP Top 10, SANS Top 25), and secure software development methodologies.Well versed with security design, code reviews & Security automation for Dev Sec Ops readinessProficiency with Burpsuite Pro, ZAP, Sonarqube, Fortify SCA, Dependency Track, Dependency Checker, PostmanKnowledge of security technologies like firewalls, WAF, CDN, and encryption to protect the application from external threats.Knowledge of server, client, and database interactions, different architectural patterns like MVC (Model-View-Controller) and microservices.Experience with programming languages, Web Methods, frameworks, and web technologies commonly used in application developmentExperience working with programming and scripting language such as Python, Bash, JavaScript, React, PHP, Angular, etc.Experience with Database management tools like MYSQL, MongoDB, etc.Expert-level knowledge and Experience with SplunkDiscussion with relevant teams for Vulnerability fixes and patches regards to Network Perimeter, Web Applications, APIDiscussion with Team for vulnerabilities before reporting to Client.Assist team member for any type of blocker for Business continuity.