Tiger Resourcing Group

Application Security Engineer

Tiger Resourcing Group

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $100,000 per year

Tech Stack

CloudJavaJavaScriptMicroservicesPythonSDLCShell ScriptingSpringSpring BootSpringBoot

About the role

  • Design, implement, and maintain secure application development practices across Java-based systems and microservices
  • Perform and manage SAST and DAST analysis within CI/CD pipelines, ensuring early detection and remediation of security flaws
  • Conduct security audits and penetration testing of web and mobile applications during development and pre-production phases
  • Continuously monitor and manage application vulnerabilities using automated scanning and manual validation methods
  • Collaborate with development teams to implement secure coding standards and improve overall application security posture
  • Track and assess the latest software versions, dependencies, and vulnerabilities, recommending timely upgrades and mitigation strategies
  • Implement and maintain best security practices for applications running in both cloud and on-prem environments
  • Participate in code reviews, threat modeling, and risk assessments as part of the secure SDLC process

Requirements

  • Bachelor’s degree or higher in Computer Science, Electrical Engineering, or related field
  • Minimum 5 years of experience in application security, DevSecOps, or similar roles
  • Strong knowledge of Java and understanding of common web frameworks (Spring, Spring Boot)
  • Proven experience in performing code security reviews, SAST/DAST analysis, and security auditing during CI/CD processes
  • Practical understanding of security testing for web and mobile applications (OWASP Top 10, SANS Top 25)
  • Hands-on experience with code scanning and pen-testing tools, integration with AI models
  • Proficiency in scripting or programming languages (Python, JavaScript, or Shell scripting)
  • Deep understanding of HTTP/HTTPS protocols, authentication mechanisms, and secure API design
  • Integrity, accountability, and continuous learning mindset
  • Excellent command of English (written and spoken)
  • Certifications such as OSCP, OSWE, OSCE, or GPEN are a plus.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
JavaSpringSpring BootSASTDASTsecurity auditingsecurity testingPythonJavaScriptShell scripting
Soft skills
integrityaccountabilitycontinuous learningcommunication
Certifications
OSCPOSWEOSCEGPEN