Senior Application Security required ASAP at Magnum Hunt

Woodland Hills, CA

About the Job

 Senior Application Security

Salary range USD 150-170K  plus 10% confirmed Bonus

Location:  Woodland Hills,California

Ideally someone who has worked in a SaaS/Cloud environment

500 employees; growing very quickly!

Role report to: Chef Security Officer

Unlimited PTO policy plus nine holidays

100% of the employee premium, 50% of the premium for dependents

Interview process: phone interview with HM, then in-person interview with HM and other internal stakeholders from the Info Sec department (including the Chief Security officer!)

 

 

DUTIES & ESSENTIAL JOB FUNCTIONS

Identify risks and areas of exposure in applications developed

Perform security reviews of source code, stored procedures, and server/service configurations.

Define and document application security requirements for applications.

Oversee development of security components throughout all stages of the SDLC.

Perform manual and automated security testing of BlackLine applications.

Monitor application logs and audit trails.

Monitor industry trends and threat landscape and recommend necessary controls or countermeasures.

Educate developers on secure coding techniques and security best practices.

Participate in development of security policies, standards, and processes.

Participate in incident handling and perform application-related forensics activities.

Perform other duties as assigned

 

JOB QUALIFICATIONS

5+ years of hands-on application security experience.

Hands-on development experience and thorough understanding of object-oriented programming, preferably Java, C#, ASP.NET

Advanced knowledge of web application technologies, MVC, Ajax, XML, JSON, SOA, SSL, web-related protocols and services.

Intermediate knowledge of MS SQL. Basic knowledge of other commonly-used DBMS.

Experience with cloud and “big data” storage, databases, and APIs

Ability to identify security vulnerabilities from source code reviews and testing.

Knowledge of encryption technologies, secure communications, and secure credentials management.

Advanced experience with at least one scripting language (e.g.: Perl, Python)

Intermediate proficiency with C/C++ or Java. Experience with lower-level languages (Assembly), debug and reverse-engineering tools (IDA, etc.) is a plus.

Advanced knowledge of common application vulnerabilities, (e.g.: XSS, CSRF, SQL injection, cookie/header/encoding manipulation, input/output validation, session replay).

Intimate familiarity with web application testing tools (eg: Burp, Parox, Fiddler, mitmproxy, Havij, netcat). Ability to write proof-of-concept exploits is a big plus.

Ability to define application security requirements and build secure web application solutions.

Advanced written and verbal communication skills including ability to present technical subjects to non-technical audiences.

Strong work ethic, attention to detail, and organizational skills.

Ability to multi-task and manage priorities in a fast-paced environment.

Ability to collaborate in a team and work independently.

Conceptual understanding of software development principles and SDLC models, Agile experience is a plus.

Intermediate proficiency with the Microsoft Office suite.

Windows and Linux operating systems knowledge at advanced user level.

Apply
Email this job
Email this job
Note: Email addresses will only be used for mail delivery of this job.