Test Engineer, Security

col-narrow-left
Job ID:
2499480
Location:
, NC
Category:
Information Technology, Telecommunications, Array
Salary:
$120,000.00 per year
Employment Type:
Full time
Posted:
08.10.2018
col-narrow-right
col-wide

Job Description:

Security Test Engineer

*Permanent full time role*

Responsibilities

  • Develop and maintain a balanced application security testing program based on a well-defined application security framework.
  • Work with Developers to Develop and maintain unit and integration tests designed to ensure security controls are tested on every build.
  • Continuously evaluate the organization's existing application security practices, define and measure security-related activities, and demonstrating concrete improvements to the application assurance program within the organization.
  • Conduct application security assessments/penetration tests and reuse tools for dynamic/automated code reviews.
  • Able to advise risks in the program and testing activities and also propose mitigation plans for encountered risks
  • Partner with Flight Product teams to work together on application, API testing and have Security tests run in parallel to ensure Dynamic testing is achieved from Security standpoint.
  • Work closely with application development and platform teams to help formulate and implement a testing strategy for software security that is tailored to the specific risks facing the organization, including threat modelling and applications security advisement services.
  • Able to prioritize work around security testing based on business priorities and assign testing priorities accordingly
  • Provide secure application development training to developers and provide guidance on the development of web-based training for ongoing awareness.
  • Conduct Application, API and penetration testing.
  • Partner with Company Security team to evaluate and perform Root cause analysis on Security Scan reports, understand what remedial actions are needed with development teams and ensure vulnerabilities are closed with highest priority and attention

Qualifications

  • Bachelor's degree in a technical field.
  • 5+ years experience as an Application Developer, Application Security Engineer, Architect or Software Quality Assurance.
  • Understanding of OWASP Top 10 and ASAP standards.
  • Thorough understanding of application security frameworks.
  • Solid understanding of penetration testing and application security code reviews.
  • Experience in an Agile/XP/Scrum/Kanban environment.
  • Solid understanding of continuous integration/testing/delivery.
  • Solid understanding of TDD.
Company Info
Request Technology - Kyle Honn