Application Security Engineer- Remote
#, PA, US,
At TE, you will unleash your potential working with people from diverse backgrounds and industries to create a safer, sustainable and more connected world.
Job Overview
As an Application Security Engineer, you will play a critical role in safeguarding our organization’s digital assets. You will be responsible for both traditional security engineering tasks and the development and implementation of a comprehensive Application Security (AppSec) program from the ground up. This includes identifying vulnerabilities in our applications, creating security policies and procedures, and educating teams on secure coding practices.
Responsibilities:
1. Application Security:
o Design, develop, and implement a robust Application Security program.
o Create and maintain application security policies, standards, and procedures.
o Work with the relevant teams to better integrate security into their software development lifecycle (SDLC) processes.
o Establish metrics and reporting mechanisms to track the effectiveness of the AppSec program.
o Conduct regular security assessments including static and dynamic code analysis (Whitehat).
o Perform penetration testing on applications and systems to identify and exploit vulnerabilities.
o Collaborate with development teams to remediate identified security issues and vulnerabilities.
o Become an expert on TE’s various applications and their criticality to TE and our customers.
2. Security Engineering:
o Perform traditional Information Security Engineering tasks and responsibilities.
o Develop a strong command of our security stack, including but not limited to SIEM(Devo), SOAR(Rapid7 and Devo), EDR/Container Security(Crowdstrike) and more.
o Be involved in triaging and responding to potential security incidents, emerging threats and new vulnerabilities.
o Provide security design reviews and consultations for new and existing projects.
3. Secure Coding Practices:
o Develop and deliver training programs on secure coding practices for development teams.
o Stay up-to-date with the latest threats, vulnerabilities, and security trends to advise on best practices.
o Assist in integrating security into continuous integration/continuous deployment (CI/CD) pipelines and establishing the Information Security Engineering team (ISE) as a Center of Excellence (COE) for AppSec.
4. Incident Response and Management:
o Participate in the incident response process, focusing on application-related security incidents.
o Investigate and analyze security breaches and provide actionable recommendations to prevent recurrence.
5. Collaboration and Communication:
o Work closely with development, operations, and other IT teams to integrate security seamlessly into development and operational processes.
o Act as a security advocate and advisor, fostering a culture of security awareness and best practices.
6. Documentation and Reporting:
o Maintain …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Remote
Benefits/PerksDisability Employee stock purchase plan Health insurance Life Insurance Paid Time Off Voluntary benefits
Tasks- Collaborate with teams
- Collaboration
- Conduct security assessments
- Perform penetration testing
- Program management
- Provide Security training
- Testing
Application Security AWS CI/CD Collaboration Communication Computer Science CrowdStrike DevOps Engineering Health Incident Response Information security Java Management NIST Operations OWASP Penetration Testing Policies Procedures Program Management Programming languages Python Rapid7 Reporting SDLC Secure coding Security Engineering SIEM Training Vulnerability assessment
Experience3 - 5 years
EducationAdvanced degree Bachelor's degree Computer Science Engineering Operations Related Field Science
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9