Application Security Specialist

The Application Security Engineer will interface with the Business Group information security and application leaders to provide timely security assessments, reporting, guidance and assist with remediation.

Required Experience:

3

+ Years
Job Locations:

Chicago, IL

Location Restrictions:

Travel

Basic Qualifications and

The Cyber Security program seeks an experienced application security consultant to help identify and mitigate application security vulnerabilities.This resource will serve on the application security team where they’ll perform and review core services that are essential to securing the business.

Responsibilities
  • Conduct time boxed web application assessments
  • Conduct remediation validations against prior findings
  • Conduct code reviews and static code analysis
  • Consult with developers and architects on secure development
  • Mentor junior team members
  • Work with application teams to communicate vulnerabilities, provide remediation guidance, demonstrate issues and work with developers to remediate and mitigate risks
  • Help build and improve operational processes
  • Stay up to date on application security attack vectors and risk
  • perform policy reviews


Required Skills and Experience
  • Bachelor’s Degree preferred
  • Development experience
  • Familiarity or experience with CI/CD pipelines and Agile methodologies
  • One or more of the following certifications (or similar): GPEN, GWAPT, GWEB, OSCP, CISSP, eCPPT, etc.
  • Familiarity with tools such as Veracode, Checkmarx, Fortify, Burp, IMB AppScan, and BlackDuck
  • 3+ years of web application security experience required (AppScan and Web Application Firewall)
  • Service oriented mentality with focus on customer service

Interested in this position?
Fill out the form below!