• Share :

SUMMARY

We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly technical and candidates must possess a solid understanding of the security and privacy of our company's applications and data.

The Application Security Engineer must understand development, coding, security engineering, and secure systems configurations. This position ensures that every step of the software development lifecycle (SDLC) follows security best practices. This involves conducting security assessments with SAST and DAST tools, reading source code, threat modeling, and designing and implementing secure software development practices. They will determine where security vulnerabilities exist and implement fixes. They must understand how an application may be misused and exploited. The Application Security Engineer will collaborate with software development teams and provide guidance on best practices for secure coding. They will also stay up to date on the latest security trends and technologies and integrate them into the organization's security strategy. The ideal candidate will have strong analytical and problem-solving skills, as well as experience in application security and knowledge of programming languages and web technologies. A Bachelor's degree in Computer Science and certifications such as CISSP, OSCP, or CASE are preferred.

ESSENTIAL FUNCTIONS

Conduct security assessments that require expertise of our organization's applications using both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) methodologies.

Collaborate with software development teams to integrate security into the development life cycle.

Conduct security assessments of web, mobile, and other applications. Analyze security assessment results to identify security vulnerabilities and provide guidance on remediation.

Design and implement secure software development practices, including threat modeling, secure coding standards, and code review.

Stay current with security threats, trends, and technologies, and recommend new security controls as needed.

Conduct application security investigations and provide recommendations to mitigate risk.

Maintain security documentation, provide subject matter expertise, and collaborate on security policies, procedures, and standards.

EDUCATION

Bachelor's degree in computer science, information security, or a related field.

EXPERIENCE

Five (5) years or more experience with OWASP, SAST, DAST, SCA, RASP and common security tools, required.

Seven (7) years or more application security, security engineering, software development, or a related field, required.

Five (5) years or more strong understanding of web application security and common attack vectors (e.g. SQL injection, XSS, CSRF), required.

Five (5) years or more experience with secure coding practices, threat modeling, and secure software development life cycle (SDLC) methodologies, required.

Five (5) years or more proven experience in diagnosing, isolating, resolving complex issues and recommending/implementing strategies to resolve problems, required.

Five (5) years or more demonstrated experience with systems integration processes, methodology and tools, required.

Seven (7) years or more development and scripting experience, required.

Five (5) years or more professional application security role, required.

Five (5) years or more experience with API and Web Security, required.

Three (3) years or more experience with WAF, or similar application security infrastructure a plus, preferred.

Seven (7) years or more experience in integrating security in CI/CD, DevOps, required.

Six (6) years or more experience process or operation management, required.

Six (6) years or more experience in Value Stream Mapping, Continuous Flow, Pull Replenishment and other process improvement experience, required.

SKILLS

Excellent communication skills, both verbal and written, and the ability to work effectively with cross-functional teams.

Ability to create and maintain professional relationships within all levels of the organization (peers, work groups, customers, supervisors).

Ability to work independently and as a member of a team.

Flexibility to operate and self-driven to excel in a fast-paced environment.

Capable of multi-tasking, highly organized, with excellent time management skills.

Proficiency in at least one programming language (e.g. Python, .NET, Javascript) with .NET preferred, required.

Proficiency in at least one common scripting language (e.g. PowerShell, bash, etc.), advanced, required.

Familiarity with NIST framework, PCI, ISO 27001, SOC, SOX, CCPA, GDPR and global regulations, expert, required.

CI/CD experience with Azure DevOps, Terraform or other automation and integration technologies, expert, required.

Risk management findings, vulnerability prioritization, threat modeling, and mitigation strategy, advanced, required.

LICENSES

CISSP, OSCP, CASE, or other industry-leading certifications, preferred.

TRAVEL

1-10%

Job Category: Information Security

Compensation Information :

The compensation offered to a candidate may be influenced by a variety of factors, including the candidate's relevant experience; education, including relevant degrees or certifications; work location; market data/ranges; internal equity; internal salary ranges; etc.

Compensation ranges for the position are below:

Pay Type :

Salaried

Minimum Pay Range:

$110,000.00

Maximum Pay Range:

$130,000.00

The position may also be eligible to receive an annual bonus, commission, and/or long-term incentive plan based on the level and/or type.

Benefits Information:

For all Full-time positions only : Ryder offers comprehensive health and welfare benefits, to include medical, prescription, dental, vision, life insurance and disability insurance options, as well as paid time off for vacation, illness, bereavement, family and parental leave, and a tax-advantaged 401(k) retirement savings plan.

Ryder is proud to be an Equal Opportunity Employer and Drug Free workplace.

All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability.

Read the full job description and apply online on the recuiter's web-site

Find Jobs Hiring Now Near You!

Get Jobilize Mobile App

Get Jobilize Job Search Mobile App Now

Receive real-time job alerts and never miss the right job again

Get it on Google Play Download on the App Store
Sales Engineer

Johnson Controls

  • US - Daegu

  • November 3, 2024


담당업무 - 대구 및 경상북도지역 개보수(신축) 현장의 소방시설 영업 (건설사, 전기업체, 소방업체 등) • 주방소화설비 및 화재 모니터링 시장 영업 • 영업 현장 도면 검토 및 물량 산출작성 (업무 지원 필요 시 견적 실행팀에 물량 산출 요청) • 발주처에 산출 물량 및 노무비 견적서 작성하여 발송 • 발주처와 계약서류 작성, 당사 ERP시스템에 Job 및 발주처 BP 등록 등 • 발주처와 공정미팅 통해 PJT 납품일정 및 제품사양 설비도면 협의 • 협의된 도면을 기반으로 제작도면 작성 후 공사 진행 개시 • 구매부에 자재요청 및...


Travel Nurse RN - PCU - Progressive Care Unit 1,637 per week

Next Move Healthcare


Next Move Healthcare is seeking a travel nurse RN PCU - Progressive Care Unit for a travel nursing job in Opelousas, Lousiana. & Requirements • Specialty: PCU - Progressive Care Unit • Discipline: RN • Start Date: 11/25/2024 • Duration: 8 weeks • 36 hours per week • Shift: 12 hours, days •...


Travel Nurse RN - ICU - Intensive Care Unit 2,208 per week

Access Healthcare

  • US - Dededo

  • November 3, 2024


Access Healthcare is seeking a travel nurse RN ICU - Intensive Care Unit for a travel nursing job in Dededo, Guam. & Requirements • Specialty: ICU - Intensive Care Unit • Discipline: RN • Start Date: 02/24/2025 • Duration: 13 weeks • 36 hours per week • Shift: 12 hours • Employment Type: Travel...


Service Engineer

Johnson Controls

  • US - Busan

  • October 31, 2024


Chiller (냉동기) and Air side product 유지보수 및 A/S Engineering 업무 관련 Project Management(Field) 업무- 제안서 작성 및 수정- 장비 공사 감독 및 관리- 장비 시운전 - 준공 서류 작성- 긴급 서비스 요청 대응 York equipment technical meeting Warranty Service 영어회화 및 독해 가능자- 영어 비즈니스 회화 선호우대사항- 기계공학이나 냉동공조 관련 학과 - 냉동 및 공기조화 업계의 서비스 엔지니어 경력 우대 - 공조냉동기계산업기사...


Travel Ultrasound Technologist 2,716 per week

Access Healthcare

  • US - Dededo

  • October 31, 2024


Access Healthcare is seeking a travel Ultrasound Technologist for a travel job in Dededo, Guam. & Requirements • Specialty: Ultrasound Technologist • Discipline: Allied Health Professional • Start Date: 12/02/2024 • Duration: 13 weeks • 40 hours per week • Shift: 8 hours • Employment Type: Travel...


Obchodník pro systémy automatizace budov

Johnson Controls

  • US - Praha

  • October 30, 2024


Hledáme zkušeného obchodníka s technickým přehledem a kontakty na stavebním trhu. Většinu našich řešení také realizujeme, práce na přípravě vhodného řešení pro klienta tak obnáší i spolupráci s celou řadou odborných profesí v naší společnosti. Cílovou skupinou zákazníků jsou stavební společnosti,...


Industriel Kuldetekniker/Servicetekniker - Ålesund

Johnson Controls


Trives du å jobbe ute hos kunder? Er du kuldeteknikker og har erfaring med ammoniakk og CO2 anlegg? Ønsker du å jobbe i et lærende og hyggelig miljø, med varierende og spennende oppgaver? Da er dette noe for deg! Vi vokser hos Johnson Controls og har en økende oppdragsmengde innenfor industrielle...


Credit Control Analyst- Spanish Speaking

BP Energy

  • US - Szeged

  • November 4, 2024


Entity: • Finance Job Family Group: • Finance Group • We are a global energy business involved in every aspect of the energy system. We are working towards delivering light, heat and mobility to millions of people, every day. We are one of the very few companies equipped to solve some of the big...


Technical Support Engineer

Johnson Controls


업무내용 - 대전 및 충청도지역 담당 - Service 영업 Support Engineer - 현장 기술 지원 (당사 시스템 결선 및 기술지도) - 시스템교체 실행 산출, 현장 관리 - PJT현장 자재 납품 관리 및 재고 관리 우대사항 (공통) - 전문대졸이상 전공자 (전기, 전기설비, 전자공학과, 소방학과 우대) - 소방설비기사 자격증 - 점검업체,설계사무소,건설사 유경험자 우대 (경력 3년 이상) - 차량 운전 가능자...


Travel Ultrasound Technologist 1,177 per week

American Traveler

  • US - Dededo

  • October 31, 2024


American Traveler is seeking a travel Ultrasound Technologist for a travel job in Dededo, Guam. & Requirements • Specialty: Ultrasound Technologist • Discipline: Allied Health Professional • Start Date: 12/02/2024 • Duration: 13 weeks • 40 hours per week • Shift: 8 hours, days • Employment Type:...


Senior Sales Engineer, HVAC

Johnson Controls


Who we are: Build your best future with the Johnson Controls team As a global leader in smart, healthy and sustainable buildings, our mission is to reimagine the performance of buildings to serve people, places and the planet. Join a winning team that enables you to build your best future! Our teams...


Rugby - Sr.Engr, VRF/PAC Cycle Design

Johnson Controls


#LI-DS2 Responsibility: ▪ Study Global PV for making refrigeration cycle variants based on performance standards /requirements for different regions while considering cost targets. • Responsible for VRF cycle development, closely collaborate with other teams to conduct cycle design, validation and...


Service Engineer

Johnson Controls

  • US - Seoul

  • November 1, 2024


지원자격 ㆍ경력 : 신입/경력 2년 ~ 10년 업무내용 ① 건물 및 공장 자동제어 유지보수 수행 (PSA 수행) ② 자동제어 관련 보수공사 및 개보수공사 수행 ③ 준공된 현장의 하자처리 ④ Validation Work 및 문서 작성 기본사항 ① 초대졸 이상의 학력 ② 전기,기계공학,제어공학 관련학과 졸업생 ③ 관련학과 자격증 소지자 (컴퓨터 관련 자격증 포함) ④ 운전면허 소지자 ⑤ 영어 능통자 우대 지원안내 - 국가보훈해당자 및 장애인은 관련 법률에 의거 우대합니다. (증빙서류 필) - 지원시 이력서(사진첨부),...


Rugby - Manager, VRF/PAC Platform Development

Johnson Controls


Responsibility: ▪ To collaborate with GPM team to convert PV requirement from global market into product specification and prepare product development plan for different locations/ budget plan in collaboration with engineering team at multiple location Lead VRF development team, closely collaborate...


Federal Project Manager - South Korea / Japan Job number: 1113

Johnson Controls


We are seeking a Project Manager for our federal team supporting project sites overseas, primarily in South Korea and Japan. This is an exciting opportunity to live abroad and lead projects primarily related to installation, maintenance and service of building technologies and solutions to U. S....


Rugby - Manager, VRF/PAC Structure Design

Johnson Controls


#LI-DS2 Responsibility: ▪ Responsible for VRF product structure assessment, design and validation, especially outdoor unit. ▪ Follow new product development process to control design quality, Product cost related to structural design, lead team to deliver structure design document. ▪ Establish and...


Site Reliability Engineer Manufacturing IT Operations

Procter and Gamble

  • US - Taguig

  • September 22, 2024


Job Location Taguig City Overview of the job As a Site Reliability Engineer (SRE) in the Manufacturing IT Operations - Incident Response Team, you will be responsible for leading incident response efforts, ensuring swift and effective resolution of critical system issues. • You will also play a...


Product Costing Analyst

BP Energy


Entity: Finance Job Family Group: Finance Group We are a global energy business involved in every aspect of the energy system. We are working towards delivering light, heat and mobility to millions of people, every day. We are one of the very few companies equipped to solve some of the big complex...


Order-To-Cash Finance Associate Japanese

Procter and Gamble

  • US - Manila

  • October 16, 2024


Job Location MANILA NET PARK OFFICE We are seeking a diligent and proactive OSS Business Operations Analyst with foreign language capabilities to join our diverse team. This role will play a crucial part in facilitating business transactions within the end-to-end Order to Cash (O2C) process,...