Job Opportunity: Application Security Expert
||Hi-Tech, Technology & IT
Application Security Expert
Looking for an Application Security Expert to help validate that our services are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation as
part of the SDLC and quickly reacting to new threat scenarios.
The Application Security Expert is expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security best practices.
The ideal candidate will need a combination of troubleshooting, technical and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work.
This role will provide career growth opportunities as you develop/acquire new security skills in the course of your duties.
Provide insight into the latest application security vulnerabilities and exploits
Conduct manual security assessments against web applications and APIs across a variety of technology stacks
Perform periodic penetration tests against multiple targets
Provide guidance on prioritization and remediation of security issues
Provide guidance on secure SDLC implementation
Develop security tools and research security automation
Mentor development teams through training and roundtables
Review application design for potential security considerations
Perform threat models of new and existing applications
2+ years as a pen tester or an application security expert
In depth understanding of Web protocols, security, and vulnerabilities
Experience with mitigating OWASP Top Ten and CWE/SANS Top 25 vulnerabilities
Experience with some combination of C++, C#, .NET, Objective C, Swift, Ruby,
Java and Python
Experience with code analysis and penetration testing tools
Advanced proficiency in written and spoken English
Relevant certification in Application Security or Pen testing (CSSLP,
GSSP-x, CEH, GPEN, GWAPT, GMOB)
Awareness of security standards and frameworks relevant to the SaaS industry
(e.g. ISO, NIST, CSA)
The Security team is a part of our Business Operations team, and works
closely with all company departments and helps validate that our products
and services are designed and implemented to the highest security standards.
To apply for this and many other job opportunities paid membership is required
If you are already a member
“I have just been offered a fantastic job - actually the job of my dreams - that I saw through Israemploy.” (Ellen, Jerusalem)