Application Security Engineer
You must be a Canadian Citizen or Permanent Resident in order to qualify.
Responsibilities:
Responsibilities:
- Lead Application Security assessment as part of the Secure SDLC Governance
- Participate in the North America Security Testing program
- Work with IT Application owner
- Onboard applications in SAST/SCA and DAST tool
- Eliminate false positive findings
- Finalize scan report
- Present final report to IT application owner
- Verify remediation
- Support technical discussion with IT Development team to discuss findings and remediation
- Partner with South America Application Security team to share our practice and governance
Qualifications:
- 5 Years+ of Information Security experience
- Bachelor’s degree in Computer Science or Information Technology.
- Excellent written and verbal English communication skills
- Clear and consistent status reporting
- Ability to create and run secure assessments of code
- Review and contribute to solutions and app designs
- Perform risk and threat assessments
- Knowledge of OWASP DevOps and OWASP Top 10
- Previous proven experience and expertise with following tools:
- Fortify
- Sonatype Nexus
- Qualys
- AppSpider
- Dependency Check from OWASP
- SonarQube
