Intersec Group · 18 hours ago
Application Security Engineer
Maximize your interview chances
AnalyticsBig Data
Insider Connection @Intersec Group
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Perform security assessments, including vulnerability assessments, penetration testing, and code reviews for web and mobile applications.
Collaborate with development teams to implement secure coding practices and assist in designing secure applications.
Conduct threat modeling to identify potential security risks and propose solutions to mitigate them.
Implement and manage security tools to automate code scanning, vulnerability management, and penetration testing.
Review and enhance the security of the development lifecycle, ensuring secure code practices are followed from design to deployment.
Identify, evaluate, and recommend security tools and technologies to improve application security.
Work with incident response teams to identify and mitigate any security incidents related to applications.
Stay up to date with the latest trends in application security and cybersecurity best practices, and provide training or guidance to the development team as necessary.
Assist with the development of security policies, standards, and procedures for application security.
Conduct security awareness training for developers to ensure secure coding practices are followed across teams.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
Strong experience in application security, software development, and secure coding practices.
Familiarity with tools such as static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
Experience with web application vulnerabilities (e.g., OWASP Top 10) and secure development frameworks.
Proficiency in programming/scripting languages such as Java, Python, C#, JavaScript, or Ruby.
Experience with web application firewalls (WAF), intrusion detection/prevention systems (IDS/IPS), and encryption technologies.
Knowledge of security testing frameworks (e.g., OWASP ZAP, Burp Suite).
Strong analytical, problem-solving, and communication skills.
Preferred
Certifications such as CISSP, CEH, CSSLP, or other relevant security certifications.
Experience with cloud platforms (e.g., AWS, Azure, Google Cloud) and container security (e.g., Docker, Kubernetes).
Experience with DevSecOps practices and integrating security into CI/CD pipelines.
Familiarity with regulatory compliance frameworks (e.g., GDPR, PCI DSS, HIPAA).
Company
Intersec Group
Intersec is a global pioneer in mobile data and location intelligence solutions.