Feedback
Job Category: Information Technology

Job Source: NRBjobs.com

Job Summary

21
  • No. of Vacancy: N/A
  • Job Location: Bengaluru (Bellandur)
  • Employment Type: Full Time
  • Salary: Not Disclosed by Recruiter
  • Gender: Any
  • Age Limit: N/A
  • Experience: N/A
  • Career level: Associate
  • Posted On: Jul 3, 2018
  • Application Deadline: Aug 3, 2018

Job Description/Responsibility

The Application Security Engineer will be responsible for integrating security into the development of Allstates applications. The Application Security Engineer will work closely with the product and software development team to threat model, vulnerability scan, and pen test the early software, system, and network architecture and identify required control points in the application stack. The Application Security Engineer will also work closely with developers to diagnose, document, and remediate application security vulnerabilities. The Application Security Engineer will also be responsible for evaluating, recommending, and implementing application security related software in an automated continuous integration/deployment environment.

Key Responsibilities

Work closely with application development and platform teams to help formulate and implement a strategy for software security that is tailored to the specific risks facing the organization, including threat modeling and applications security advisement services.
Develop and maintain a balanced application security program based on a well-defined application security framework
Conduct application security assessments / penetration tests and implement tools for dynamic/automated code reviews
Ensure application design and implementation best-practice with role-based and appropriate access standards, as well as integration with Identity and Access Management environments.
Ensure compliance with society, regulatory, and industry standards for application security.
Continuously evaluate the organizations existing application security practices, define and measure security-related activities, and demonstrating concrete improvements to the application assurance program within the organization.
Provide secure application development training to developers and provide guidance on the development of web-based training for ongoing awareness.
Conduct code reviews and penetration testing
Develop and maintain unit and integration tests designed to ensure security controls are tested on every build

Functional Competencies Proficiency levels

Software Engineering: 5
Dev Sec Ops: 3
Dev Ops: 3
Continuous Integration: 4
Security Governance: 4
Testing: 3
Scripting: 4
Thriving in Change: 4

Experience Requirements

  •  8 - 10 yrs
  •  5 years experience as an Application Security Engineer, Application Developer, Architect, or Software Quality Assurance

Education Requirements

  • Any Graduate - Any Specialization

Skills Requirements

Highly proficient with development languages including Java, .NET, Node.js, Go
Organized, responsive and highly thorough problem solver
College degree with advanced degree preferred.
Possess strong business acumen with ability to work with application development, QA and security teams.
A strong understanding of application security frameworks
Thorough knowledge of the OWASP Top 10
Must have a solid understanding of application security code reviews and penetration testing.
Practical understanding and use of commercial application security tools
Strong self-starter who has the ability to operate independently.
Has solid understanding and experience with establishing application security policies across an organization.
Excellent oral/written presentation skills with ability to communicate effectively with senior executive leadership; proficiency in preparation of presentations, analytical reports, and documents regarding program operational status, achievement and performance.
Understanding and Passion for Agile/XP/Scrum/Kanban
Understanding of Test Driven Development built on User Stories
Understanding of Continuous Integration/Testing/Delivery
Familiarity with Metasploit, Burp Suite, Fuzzing, Gaunlt, and Jenkins is preferred

Compensation/Benefits

N/A

Apply Instruction

Company Profile: IT

Company Website: https://www.allstate.com/india.aspx

Simillar Jobs

Personal Details

Documents for this application

Files can be up to 2MB for file types.
.pdf .doc .docx .rtf .txt

Cover Letter

Resume

All personal information submitted by you as part of an application will be used by us in accordance with our privacy statement

All Jobs of This Company

Upcomming Courses

More Courses

CAREER ARTICLE

More Article