Sr. Information Security Engineer

Summary

This role focuses on comprehensive application security testing and vulnerability management across the software development lifecycle. It involves conducting automated and manual scans using tools like Invicti, Veracode, and Burp Suite to identify and remediate security flaws in application code and open-source components. The position requires strong collaboration with development and DevOps teams, secure coding expertise in languages such as Java and Python, and adherence to compliance frameworks including NIST, PCI-DSS, and SOX. The ideal candidate brings over five years of hands-on experience in application security, secure development practices, and automation within CI/CD environments.

To leverage deep expertise in application security testing, secure coding, and vulnerability management to enhance the security posture of enterprise applications. The goal is to proactively identify and remediate security risks, integrate security into Dev...