Category: Information Security
Company Description: GPS Technology Leader
Salary: Highly Competitive, Depending on Experience
Position Type: Permanent
Job Number: 9809
As an Application Security Engineer your key area of responsibility will be to ensure and enforce secure coding standards for current and future developers. This will encompass using various tools to test code for all systems and applications, provide risk assessments for vulnerabilities, as well as reporting on the overall quality of the current coding standard. You will be working closely with the Automotive and Development teams with your day-to-day responsibilities.
To be successful in this role you will be a self-starter who is meticulous when it comes to security measures. You will have strong verbal and written communication skills, and are enthusiastic about maintaining up-to-date knowledge on current security protocols, trends and potential risks.
Duties and Tasks/Essential Functions:
Conduct web application and code testing for all systems and applications, open source dependencies, and provide analysis and risk assessments for vulnerabilities discovered
Utilize code analysis and fuzzing tools to assess the quality and security of source code and make recommendations on tools to address any gaps in coverage
Contribute to secure coding standards (involves developing secure coding training for current and future developers)
Provide a monthly report on the overall quality of source code from a security perspective by project/team (includes trend analysis, defects remediated, etc.)
Bachelor’s degree in Computer Science, Information Management or Engineering
2+ years of experience performing web development (Network protocol analysis, debugging, virtualization platforms and techniques, scripting/programming)
2+ years of experience with security evaluation/analysis within a technical organization (security code reviews, providing risk assessments for vulnerabilities discovered, etc.)
Ability to work with Linux and Windows
Completed certifications in CISSP, CSSLP, CEH, OSCP or GIAC Security Software Programmer (.NET) are preferred
Andiamo provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Andiamo complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Please Note: All inquiries will be treated with the utmost confidentiality. Your resume will not be submitted to any client company without your prior knowledge and consent.