AppSec Engineer (xTriage Team)

We seek an AppSec Engineer to enhance our Security Operations Center (SOC). The ideal candidate will focus on integrating security into our development and operations processes. The candidate will be responsible for designing and implementing automated security solutions that seamlessly integrate with our DevOps pipeline, ensuring the secure deployment of applications and infrastructure.

Key Responsibilities

• Perform security assessments, including static and dynamic application security testing, to identify and remediate vulnerabilities in software applications.
• Collaborate with development teams to integrate security requirements and best practices into the software development lifecycle.
• Conduct threat modeling and risk assessments to address potential security issues proactively.
• Develop and implement secure coding standards and train developers on secure coding practices.
• Review and analyze application architecture and design to ensure security controls are adequate.
• Stay updated on emerging threats, vulnerabilities, and industry trends to improve application security strategies continuously.
• Good experience in application security, with a understanding of security testing methodologies and tools (e.g., SAST, DAST, SCA).
• Will be an integral part of the SOC team and the Security engineer.

Qualifications

• Proven experience in DevSecOps, security engineering, or related fields.
• Proficiency in scripting languages (e.g., Python, Bash) and CI/CD tools (e.g., Jenkins, GitLab).
• Strong knowledge of security practices for cloud platforms (AWS, Azure) and container orchestration.
• Experience with security tools (e.g., static and dynamic analysis, vulnerability scanners).
• Understanding of network security, incident response, and risk management.
• Familiarity with application security tools (e.g., Burp Suite, Fortify, SonarQube).
• At least two years in the DevSecOps/AppSec world.

What We Offer

• Competitive salary and benefits package.
• Opportunities for professional development and growth.
• A collaborative and inclusive work environment.
• Cutting-edge technology and tools.

Join us in driving innovation while safeguarding the digital infrastructure through robust and scalable modern security solutions.