Remote Sr. Application Security Engineer Job in UK Intermedia Cloud Communications

Who you are

• 4+ years of experience in the application security field
• Knowledge of secure coding best practices and industry standards (such as OWASP) and the ability to apply them to different programming languages
• Knowledge of SDLC and DevSecOps concepts and hands-on experience in implementing them
• Experience in using static and dynamic security scanning tools (such as Burp ZAP Snyk SonarQube Checkmarx and others)
• Knowledge of secure design principles and ability to architect and design secure software systems considering security requirements and constraints
• 1+ years of experience in securing applications within cloud platforms (AWS Azure GCP) and containerized environments (Docker Kubernetes)
• Ability to explain application security threats and mitigation options to both developers and project managers
• Good communication skills in written and verbal English
• Proactiveness and self-drive to move things forward with little or no supervision
• Strong sense of ownership responsibility and drive
• Hands-on experience in integrating security testing tools within CI/CD pipelines

What the job involves

• Perform design and architecture review of new features suggest security requirements
• Collaborate with DevOps and engineering teams advising on security features and best practices in SDLC
• Utilize static security scanning tools review findings and coordinate remediation actions
• Perform ongoing manual security assessments
• Review the results of external penetration tests and communicate suggested fixes to development teams
• Provide on-demand support on application security topics
• Drive process improvement ideas
• Assist with vetting and intake of defects from 3rd party security researchers via our Bug Bounty program