Application Security Engineer c2c job opportunities BROKLYN, NY

Contract

Application Security Engineer

 

Job Title: Application Security Engineer
Job Location: BROKLYN, NY (Onsite)

Job Duration: Long Term Contract

Visa: USC, GC, H4

 

WITH EITHER OF Below Certifications 

CISSP / CEH, CCSP/ or GIAC Web Application Penetration Tester (GWAPT) are highly preferred. ( Years of Experience: 15+ Years )

 

 Note : the candidate will NOT be considered without Certifications, please share the copy of certifications in one email along with resume and details below : 

 

LinkedIn IS MUST:  Candidate must have LinkedIn account

 

MANDATORY SKILLS: 

● 15 years of experience in application security, with a proven track record of conducting vulnerability assessments, penetration testing, and secure code reviews. Extensive experience in secure application development, including knowledge of security frameworks like OWASP Top 10, and the ability to guide development teams in implementing secure coding practices. Proficiency in Software Composition Analysis (SCA) tools (e.g., Veracode, AppSec) for identifying and managing vulnerabilities in open-source libraries and third-party components. Advanced knowledge of static and dynamic application security testing (SAST/DAST) tools (e.g., Veracode, AppSec, Burp Suite) and integrating these tools into CI/CD pipelines for automated security checks. Strong cloud security expertise, including securing applications and workloads on AWS, Azure, or GCP, and experience with Web Application Firewalls (WAF) and cloud-native security services.

 
DESIRABLE SKILLS/EXPERIENCE:

● Advanced cloud security experience: Experience securing cloud environments (AWS, Azure, GCP) with tools like Web Application Firewalls (WAF), and implementing IAM, encryption, and monitoring tools. Experience with scripting and automation, using Python, Bash, or PowerShell, to automate security tasks, integrate security testing tools, and improve the efficiency of security operations. Strong communication skills: Ability to effectively explain complex security concepts and risks to both technical teams and non-technical stakeholders, ensuring alignment on security measures. Leadership and mentoring skills: Experience leading security teams or initiatives, mentoring junior engineers, and fostering a culture of security awareness within the organization. Collaboration and cross-functional teamwork: Proven ability to work effectively with development, DevOps, and IT teams to integrate security into all aspects of the business, ensuring security goals align with business objectives. Highly flexible/willing to learn new technologies. Highly organized with excellent analytical, problem solving and decision-making skills.

To apply for this job email your details to sonu@cy-tec.com