Application Security Engineer

Application Security Engineer

Vacancy expired!

Kelly Technology is helping its client, a molecular diagnostics company finding an experienced Application Security Engineer Penetration Testing.

Application Security Engineer

Client Industry: Biomedical/Med. Devices

Direct Hire: Onsite in Sunnyvale, CA required; Relocation and great benefits

Highly competitive comp package!

ESSENTIAL JOB RESPONSIBILITIES:

• You will develop or identify and customize tools, also will drive the adoption of best practices throughout the organization to ensure that Cloud, mobile app, and windows application software are secure.
  • Manage penetration testing coverage across fast-growing customer facing cloud-based environments, Mobile App, and other medical diagnostic devices.
  • Perform independent manual penetration tests of cloud infrastructure, web application and APIs.
  • Perform SAST (Static Application Security Test) based code review, to understand potential security weaknesses, for exploitation purposes.
  • Implement cybersecurity controls and security engineering.
  • Proficient in client-server-based architecture; understands one or more technical disciplines, such as software development/engineering methodologies, system/network security engineering principles, secure design, secure architecture, and/or secure coding techniques.
  • Address vulnerabilities and maintain product security posture
  • Conduct assessments of security controls in order to measure the effectiveness of controls and identify any gaps
  • Provide continuous monitoring security expertise to business units and key stakeholders
  • Perform architecture reviews as part of product security process
  • Provide security consulting services internally to the engineering organization by giving mentorship and functioning as an information security authority

Minimum requirements

• Minimum 5+ years of related experience
• Experience working with different security tools
• Expertise with web system security concepts, including authentication, authorization (RBAC), encryption/hashing, SAML, and LDAP.
• Advanced knowledge of web application vulnerabilities such as cross-site scripting (XSS), sessions hijacking, SQL injection, CSRF (Cross-Site Request Forgery), OWASP Top 10, and other attack vectors.
• Hands-on experience with encryption, hashing, secure random number generation, key derivation, digital signatures, etc
• Experience leading vulnerability/incident assessment: Static assessment, Dynamic assessment, Vulnerability assessment
• Risk Management knowledgeable; hands on experience with RMF

Preferred Qualifications:

• Medical Devices or Pharma Industry experience in a regulatory environment strongly preferred.
• Certified Ethical Hacker
• Working knowledge in Cybersecurity with software/application or product development.
• Expertise with application server technologies such as Spring Framework, Spring Security, Web Services, REST, and Hibernate.
• In-depth knowledge of and experience with security technologies, single-sign-on and identity management technologies.

Interested in this role? Please feel free to reach out directly

Tina Zahradnik, PHR

Senior IT Recruiter, Kelly Technology

or

Why Kelly ® ?


By partnering with Kelly® Technology, you'll have direct connections to top companies around the globe-giving you the chance to put your tech skills to work on some of today's most intriguing, innovative, and high-visibility projects. In a world where change is the only constant, our unparalleled connections and IT market expertise help you take your skills exactly where you want to go. We're here to help you gain experience, keep learning, and move your career forward.

About Kelly ®


At Kelly, we're always thinking about what's next and advising job seekers on new ways of working to reach their full potential. In fact, we're a leading advocate for temporary/nontraditional workstyles, because we believe they allow flexibility and tremendous growth opportunities that enable a better way to work and live (plus, did we mention we provide a ton of benefits ?). Connecting great people with great companies is what we do best, and our employment opportunities span a wide variety of workstyles, skill levels, and industries around the world.
Kelly is an equal opportunity employer committed to employing a diverse workforce and providing accommodations for people with disabilities in all parts of the hiring process as required under its Employment Accommodation Policy. Kelly will work with applicants to meet accommodation needs that are made known to Kelly in advance.