Lead Application Security Engineer

Lead Application Security Engineer

Vacancy expired!

job summary:

Full Remote Opportunity Available


St. Louis based global life and health reinsurance company looking for experienced Lead Application Security Engineer. Candidate will lead technical efforts for ensuring security is applied to the technology platforms and information within the organization. Experience with SAML, OAuth, Cloud authentication/authorization mechanisms, and secrets management along with SDLC is required. Apply if interested!

location: Chesterfield, Missouri

job type: Contract

salary: $75 - 77 per hour

work hours: 8am to 4pm

education: Bachelors



responsibilities:

• Performs application security assessments and remediation activities as part of the application security program and ensures application teams adhere to the SSDLC Framework.
  
• Research information security standards; conducts application security and vulnerability analyses and risk assessments; research threats and attack vectors that impact applications. An example would be interpreting a SOC 2 from a vendor to determine if technical requirements of a control are met.
  
• Makes recommendations on toolset modifications and improvements, improvements on development processes and production application security support.
  
• Technically mentors associates within the department. Provides training and guidance to team members as required.
  
• Evangelizes application security program fundamentals, tools, processes and acts as a consultative partner with Global IT and Business teams.
  
• Participates in automation of scanning and workflows around an internal application security framework
  
• Ensures teams are validating for OWASP and performing industry leading application security practices such as NIST Cyber Security Framework.
  
• Perform other duties as assigned.

• Experience level: Experienced
• Minimum 8 years of experience
  
• Education: Bachelors