SWORD Health is hiring a
Principal Application Security Engineer, Remote - United States

Summary

We are seeking a highly skilled and experienced Principal Application Security Engineer to work closely with development teams to ensure security is integrated into the software development lifecycle. This role involves developing and implementing application security best practices, conducting regular security assessments, collaborating with the development team, monitoring security logs, staying updated on security threats, providing security training, and integrating or building security tools.

Requirements

• Bachelor's degree in Computer Science, Information Technology, or related field
• 5+ years of experience in application security engineering
• Strong knowledge of web application security vulnerabilities and best practices
• Hands-on experience with application security tools such as Snyk, Burp Suite, DefectDojo
• Experience with cloud security and container security is a plus
• Hands-on experience in scripting/coding, preferably in Python
• Excellent communication and interpersonal skills
• Good verbal and written communication skills in English

Responsibilities

• Develop and implement application security best practices, policies, and procedures
• Conduct regular security assessments and penetration testing to identify and address vulnerabilities
• Collaborate with the development team to ensure that security is integrated into the software development lifecycle
• Monitor, analyze, and triage security logs to detect and respond to security incidents
• Stay up-to-date on the latest security threats and trends, and provide guidance on how to mitigate risks
• Provide security training and awareness programs to educate employees on secure software development best practices
• Integrate or build security tools that help to continuously monitor our ecosystem

Preferred Qualifications

CISSP, CEH, CSSLP, OSCP, GWAPT or other security certifications are a plus