Vacancy expired!
A Colorado-based services organization is actively seeking an experienced IT professional to join their staff as their new Application Security Engineer. In this role, the Application Security Engineer will be responsible for leading the product lifecycle and development of security initiatives for the company's client's services and applications. This is a Hybrid opportunity requiring the qualified professional to work at least 3 days a week onsite.
Responsibilities: The Application Security Engineer will:- Bring expert knowledge of security best practices in product development and translate appropriate steps for unique organization and market position
- Guide application security initiatives utilizing research, business case development, scoping, and all phases of the product development lifecycle
- Act as a specialist for key stakeholders on proper security development, hardening of systems, code scanning and vulnerability assessment and management
- Define policies and procedures to minimize intrusions, malware events and vulnerability issues
- Diagnose highly complex issues and evaluate, recommend, and execute the best resolution
- Evaluate proposed features and enhancements from the perspective of the digital user experience and make decisions in the best interest of the consumer
- Manage details of the development and communication of product strategies dependent on new services/features to drive financial results
- Partner with key stakeholders in security, product, marketing and customer operations to implement strategy
- Ensure compliance with security standards, policies and procedures
- Provide a data-centric perspective, using data as the driver and influencer of priority and measurements of success
- Define product goals and build the experiments to rapidly evaluate their success
- Perform other duties, as needed
- 8+ years of experience as a Software Security Architect; 6+ years of experience in Product Development / Management
- Bachelor's Degree in Information Systems, Software Engineering, or equivalent
- Experience protecting against security vulnerabilities including the OWASP Top 10 and CWE Top 25
- Familiarity with authentication and authorization technologies, including SAML and OAuth
- Keep current with trends and technological innovations in the security industry to continually strengthen our client's stance against cybersecurity threats and theft of service
- Extensive knowledge of digital SDLC tools such as JIRA
- Microsoft Office Suite proficient (Word, Excel, PowerPoint, etc.)
- Solid problem solving and time management skills
- Great interpersonal skills
- Excellent communication kills (written and verbal)
- Strong attention to detail
- Highly organized
- Master's Degree
- Telecom experience