Experience Inc. Jobs

Description We are seeking a Security Engineer - Application Security to join our team in San Ramon, California, 94583, United States. In this role, you will be tasked with the development, integration, and enhancement of application security within our organization's software systems. This role is within the service industry and will provide valuable contributions to our team's capabilities in ensuring the security of our applications.

Responsibilities:

• Develop and deploy tools for application security assessment, identifying deficiencies and recommending more secure coding techniques.

• Design core components to support common application security needs such as session management, logging/alerting, and secure configuration.

• Collaborate with various teams to understand the business logic of their applications and make security recommendations based on their specific use cases and needs.

• Work closely with teams managing existing devops pipelines, focusing on the integration of tools that will enhance application security.

• Analyze application code and articulate recommendations for addressing deficiencies.

• Assist in responding to security incidents related to application security, which includes deploying new versions of code as necessary.

• Conduct Application Security Reviews and perform manual testing where appropriate.

• Provide expert advice and consultancy on risk assessment, threat modelling, and vulnerability fixing to internal customers.

• Evaluate vendors, products, and procedures for potential technical risks.

• Continually assess and update internal project engagement methodologies and processes to better align with a Secure SDLC. Requirements

-Bachelor's degree in related field or equivalent experience.

-Deep comfortability with software development, and experience working on a software development team.

-A demonstrated history of building production applications with modern platforms/languages in the cloud (AWS and Azure preferred).

-Experience interpreting and remediating security tooling results (SAST, SCA, and DAST preferred).

-6+ years’ IT security engineering experience or a non-technical degree with 7+ years’ security engineering experience.

-A strong development background, including experience in multiple languages, familiarity with different system architecture models (e.g. microservice vs. monolith), and experience working with teams to gather requirements and develop software.

-Professional experience in security analysis, development, engineering, and support, including experience working with software development teams and making architectural decisions for software components.

-Security-focused certifications a plus (CISSP, CISA, CCSP, CEH, AWS, etc.).

-In depth experience with security frameworks, such as NIST 800-53.

-Experience with securing cloud-based technology deployments and service offerings, to include SaaS, IaaS, PaaS.

-Experience with evaluating application code and ensuring secure coding practices.

-Solid expertise with multiple programming languages, to include: Python, PowerShell, Java, JavaScript, .NET, C#/C++, etc.

-Familiarity with CI/CD tooling such as Jenkins, Gitlab Runners, Github Actions, Travis, etc.

-Ability to communicate in-depth business processes to technical resources.

-Working knowledge and direct experience managing complex security issues.

-Ability to gather, combine and document requirements effectively to propose secure solutions.

-Ability to create thorough and complex documentation and facilitate, conduct meetings, gather information and present status.

-Ability to think independently and in team setting to ensure security issues are addressed in a manner consistent with security principles in mind.

-Possess a security mindset and help instill in other team members. Assess challenges within the concept of overall organizational risk.

The typical annual salary range for this position is shown below and is negotiable depending upon experience and location. The position is eligible for a discretionary annual bonus.

$106,000.00 - $163,000.00

Technology Doesn't Change the World, People Do.®

Robert Half is the world’s first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.

Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app (https://www.roberthalf.com/us/en/mobile-app) and get 1-tap apply, notifications of AI-matched jobs, and much more.

All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.

© 2024 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking “Apply Now,” you’re agreeing to Robert Half’s Terms of Use (https://www.roberthalf.com/us/en/terms) .