Application Security Engineer

Job Summary (in List Format):

• Design, implement and optimize security controls for web and API applications.
• Collaborate with development, DevOps, and product teams to integrate security throughout the Software Development Lifecycle (SDLC).
• Ensure application security practices align with compliance and organizational risk management objectives.
• Assess and improve security of web and API ecosystems using industry best practices (e.g. OWASP Top 10 secure coding standards).
• Deploy and manage Web Application Firewall (WAF) solutions (e.g. F5 ASM, Imperva, Akamai, Cloudflare, AWS WAF).
• Utilize CI/CD security tools and static/dynamic application security testing (SAST/DAST) solutions (e.g. Veracode, Fortify, Burp Suite, OWASP ZAP).
• Implement encryption standards, manage TLS configurations, and oversee key management systems (KMS).
• Apply cloud security controls across AWS, Azure, or GCP environments.
<...