Senior Application Security Engineer (4+ Years Of Experience)

وصف الوظيفة

PetroApp, a leader in the automotive industry, is seeking a highly skilled and experienced Senior Application Security Engineer with a strong background in software security and secure coding practices. As a Senior Application Security Engineer at PetroApp, you will be responsible for ensuring the security of our software applications by conducting security assessments, implementing security controls, and providing guidance to development teams in secure coding practices.

Responsibilities

  • Perform security assessments and penetration testing of software applications to identify vulnerabilities and potential security risks.
  • Implement and maintain security controls, such as application firewalls, encryption mechanisms, and access controls.
  • Collaborate with development teams to provide guidance on secure coding practices and conduct security code reviews.
  • Identify and recommend technical solutions to mitigate security risks and improve the overall security posture of our applications.
  • Stay up-to-date with the latest security threats and industry trends, and provide insights and recommendations to enhance our security measures.
  • Conduct security training and awareness programs for development teams to promote a culture of security.

إمتيازات الوظيفة

  • Competitive salary and benefits package.
  • Opportunity to work on cutting-edge technology with a passionate team.
  • Career growth and development opportunities.
  • A collaborative and inclusive work environment.
  • The chance to make a significant impact on an innovative product.

متطلبات الوظيفة

  • Bachelor's degree in Computer Science, Information Security, or a related field.
  • Minimum of 4 years of experience in application security.
  • Strong knowledge of secure coding practices and software security principles.
  • Experience in conducting security assessments, penetration testing, and vulnerability scanning of web applications.
  • Understanding of secure application development methodologies and frameworks (e.g., OWASP Top 10, SANS).
  • Good understanding of security technologies such as Web Application Firewalls (WAF), Intrusion Detection/Prevention Systems (IDS/IPS), and encryption mechanisms.
  • Relevant certifications such as CISSP, CSSLP, or OSCP are highly desired.
  • Excellent problem-solving and analytical skills.
  • Strong communication and collaboration abilities.