Be an early applicantLess than 25 applicants

Company

Original Job Post

ARA · 2 days ago

Application Security Engineer

Florida, NY

Full-time

Onsite

Senior Level

7+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

ConsultingHealth Care

Insider Connection @ARA

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Develop security training and guidance for internal and external development teams.

Provide expertise on architecture, authentication, encryption, and systems security for in-house software applications.

Create and maintain artifacts in a protected repository.

Assess and integrate security tools, particularly open-source tooling.

Assist with assessment activities to enhance technology.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

C++Security librariesRMF security controlsVulnerability assessmentsDatabase patchingGUI flawsAuthentication flawsAuthorization flawsAtlassian toolsCI/CD pipeline integrationCheckMarxSonarQubeSASTDASTOSASecure software supply chainSecurity risk identificationOutdated code removalApplication security standardsSecurity architecturesVulnerability mitigation strategiesSecure coding practicesSecurity architecture decisionsSecurity technical improvementsSecurity process improvementsActive DoD Security ClearanceProblem-solvingHard-workingInquisitive natureProactive attitude

Required

Familiar with common security libraries, RMF security controls, common security flows, and vulnerability assessments for C++ applications

Ability to discover and patch database, GUI, authentication and authorization flaws, and other security vulnerabilities contained in the software applications

Experience with Atlassian tools and CI/CD pipeline integration of security assessment and remediation measures

Experience with CheckMarx, SonarQube, and other application security analysis tools

Heavy experience with SAST, DAST, OSA, and secure software supply chain is a must

Proactively identify and reduce security risks in the supported software applications developed in-house

Find and remove outdated and vulnerable code and code libraries

Consult with other Developers and Product Managers to analyze and propose application security standards, methods, and architectures

Handle communications with independent vulnerability researchers and design appropriate mitigation strategies for reported vulnerabilities in collaboration with security teams

Educate other developers on secure coding practices

Ability to professionally handle communications with outside researchers, users, customers, and organizations

Ability to communicate clearly on technical issues

An inquisitive nature for discovery of root cause

A proactive attitude towards challenges and technology

Drive and passion for technology and capabilities

Superior written and verbal communication skills

Assist in making security architecture decisions for software applications

Implement security technical and process improvements

You employ a flexible and constructive approach when solving problems

7-9 years of related experience

Applicant must be a United States citizen and be able to obtain and maintain an Active DoD Security Clearance