Remote Security Application Engineer Job in Belmont, CA RingCentral

Who you are

• Extensive experience with web and mobile application setup and testing for SAST/DAST
• Experience with penetration testing using tools like Burpsuite
• Technical experience in software architecture design implementation and security code reviews
• U.S citizenship required
• Experience with open-source software including lifecycle management vulnerability management tools
• Experience working with developers to provide guidance on vulnerability management
• Excellent communication skills both verbal and written ability to condense complicated scenarios into simple risk-based assessments appropriately targeted for colleagues and upper management
• Outstanding organizational and time management skills desire to work within a highly collaborative team

Desirables

• WebRTC experience
• Video and audio streaming
• Video codecs experience
• B.S. or equivalent in CS/EE

What the job involves

• Consult developers on questions related to reports of security scanners which includes explaining why an issue should be considered as a vulnerability explaining circumstances under which an issue might be exploitable and providing suggestions on how an issue can be remediated using internal security controls
• Review and validate issues marked as potential false positives by developers request additional clarifications where required
• Report breached security defects within company SLA’s
• Review and improve security scanners configurations make sure that important rules are enabled and irrelevant rules are disabled
• Make sure security scanners do not miss production code/applications as well as do not scan testing-only code/applications
• Adjust scanning rules to improve their accuracy and collaborate with legal to ensure license violation rules for open-source software are configured correctly