Application Security Engineer/Penetration Tester

Proven expertise as an Application Security Engineer or similar role
Experience in conducting application penetration testing on web and API applications
Expert-level knowledge of Application Security Testing Techniques - Vulnerability Scanning, Penetration Testing, Ethical Hacking
Experience with security assessment tools and techniques, such as static code analysis, dynamic application testing, and penetration testing
Experience with security engineering practices, including web application security, network security, authentication and authorization protocols, cryptography, automation, and other software security disciplines
Experience with Security Reviews and Threat Modeling to integrate security tools and processes into the DevOps pipeline
Deep understanding of secure coding practices, common application security vulnerabilities (e.g., OWASP Top 10), and secure software development methodologies
Well versed with security design, code reviews & Security automation for Dev Sec Ops readiness
Proficiency with security tools and technologies like Burp
Knowledge of HTTP, HTTPS, SSL, TLS, SFTP, etc., as well as practical experience using public clouds like AWS, Google Cloud Platform, and Azure.
Knowledge of security technologies like firewalls, intrusion detection systems, and encryption to protect the application from external threats.
Knowledge of server, client, and database interactions, different architectural patterns like MVC (Model-View-Controller) and microservices.
Experience with programming languages, frameworks, and web technologies commonly used in application development
Experience working with at least one scripting language such as Python, Bash, JavaScript, etc.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.