The Application Security Engineer will work as a member of the Application Security Team located in Enterprise Information Security.
In this role, the Application Security Engineer will analyze source code of applications written in common programming languages (Java, .NET, PHP, NodeJS, Python, etc.) with a focus on secure coding practices and principles. Work directly with product owners to properly build and document Application Threat Models. Leverage commercial and Open Source tool sets to perform static and dynamic analysis on internally and externally developed applications, and effectively communicate findings to development teams. Perform on-going security testing and code review to improve software security. Assist with engineering designs for new software solutions to help mitigate security vulnerabilities.