Software Security Engineer (Remote)

Job Description

Software Security Engineer position within a global organisation, responsible for identifying vulnerabilities and implementing security best practices throughout the Software Development Life Cycle

A remote Software Security Engineer position will be responsible for identifying vulnerabilities and implementing security best practices throughout the Software Development Life Cycle (SDLC).

You will conduct security threat analysis for all new projects, code review for all changes made to applications and manual penetration testing. As part of the role, you will also be working closely with the development teams, business stakeholders and risk management teams to provide remediation recommendations to address vulnerabilities within the SDLC. Part of your role also involves developing custom security automation within the CI/CD

The progression for this role sees you leading the Software Security function, influencing the project pipelines and playing a key role in shaping the security culture in the organisation.

Some of things we look for in the successful candidate:

• Experience using Application Security Software Testing tools like Burpsuite, MetaSploit, Nmap
• Ability to review complex codes in Java or C
• Experience with threat modeling and table top exercises
• Strong knowledge of common Application Security risks such as OWASP top 10
• Industry relevant certifications such as OSCP, GWAPT, CSSLP, GPEN desired
• Security automation experience
• Prior experience working in a globally distributed environment
• Passion for Application Security and driving a robust security culture across the organisation

Morgan McKinley is acting as an Employment Agency and references to pay rates are indicative.

BY APPLYING FOR THIS ROLE YOU ARE AGREEING TO OUR TERMS OF SERVICE WHICH TOGETHER WITH OUR PRIVACY STATEMENT GOVERN YOUR USE OF MORGAN MCKINLEY SERVICES.