Application Security Engineer (Closed)

SkillStorm is seeking an Application Security Engineer for our client in Addison, TX OR Chicago, IL OR Washington DC OR Denver, CO. Candidates must be able to work on SkillStorm's W2; not a C2C position. EOE, including disability/vets.

Job Description:

• This role is for an individual contributor DevSecOps engineer responsible for the design, plan, build, deploy and manage cycle of vendor application software for enterprise usage.

The Successful Candidate’s Primary Role Will Involve:

• Deploying vendor software manually and with Ansible
• Installing and Configuring vendor software
• Executing functional and regression tests
• Managing applications on Windows Server and RHEL hosts
• Resolving tickets for application incidents
• Supporting end user adoption and requests

The Successful Candidate Will Have Experience In Areas Such As The Following:

• Implement log analysis and alerts in Splunk
• Coordinate application monitoring in Guardium
• Configuring applications for IAM services such as SSO and LDAP
• Integrating with IAM entitlement grant and revocation systems
• Integrating triggers in CI/CD processes via Jenkins and Ansible
• Understanding of application security vulnerabilities and prevention methods

Team Description and Responsibilities:

• This position is on the Enterprise Application Security Engineering team, aka the Developer Security Platform. The team delivers application security testing solutions to the enterprise developer community for use in their software development methodologies and to the Global Information Security team for independent testing.
• Solutions delivered include primarily commercial vendor software. Engineers are responsible for designing, building, deploying, and managing software for the enterprise. Deployment includes integration to enterprise systems in compliance with policy and standards. Managing the software includes traditional release planning and execution, plus also understanding the business requirements to expand and extend product capabilities to meet the needs of the bank, by developing add-on enhancements.
• Engineers also partner with Architecture and Research & Innovation teams for new initiatives; with Production Operations for support responses; Assessors for solution accuracy efforts and developers across the enterprise for L3 user support.
• The immediate responsibility of the successful candidate will be to join the team in expanding our existing Checkmarx CxSAST solution across the enterprise. The expansion will include an architecture change to a high availability deployment, with capacity increases through utilization of containerized scanning engines. Engaging and partnering with multiple other infrastructure and technology teams to achieve these goals should be expected. Adherence to all enterprise governance and controls for technologies used will be required.

Preferred Experience Level:

• 2-5 years of experience of DevOps or DevSecOps in an enterprise environment
• Bachelor’s Degree in Computer Science, Engineering or equivalent experience 
• We are a team of great application security engineers who work as a team to architect, design, build and deliver secure security solutions at scale. If this sounds like you then please, let’s talk.

#LI-DNI