Search jobs > Tallahassee, FL > Remote > Application security

Application Security Engineer - Remote

Ryder System, Inc.
Tallahassee, FL, United States
Remote
Full-time

RyderApplication Security Engineer - Remote

Tallahassee, FL, 32395, USA

Job Seekers can review the Job Applicant Privacy Policy by clicking HERE. (

SUMMARY

We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly technical and candidates must possess a solid understanding of the security and privacy of our company's applications and data.

The Application Security Engineer must understand development, coding, security engineering, and secure systems configurations.

This position ensures that every step of the software development lifecycle (SDLC) follows security best practices. This involves conducting security assessments with SAST and DAST tools, reading source code, threat modeling, and designing and implementing secure software development practices.

They will determine where security vulnerabilities exist and implement fixes. They must understand how an application may be misused and exploited.

The Application Security Engineer will collaborate with software development teams and provide guidance on best practices for secure coding.

They will also stay up to date on the latest security trends and technologies and integrate them into the organization's security strategy.

The ideal candidate will have strong analytical and problem-solving skills, as well as experience in application security and knowledge of programming languages and web technologies.

A Bachelor's degree in Computer Science and certifications such as CISSP, OSCP, or CASE are preferred.

ESSENTIAL FUNCTIONS

Conduct security assessments that require expertise of our organization's applications using both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) methodologies.

Collaborate with software development teams to integrate security into the development life cycle.

Conduct security assessments of web, mobile, and other applications. Analyze security assessment results to identify security vulnerabilities and provide guidance on remediation.

Design and implement secure software development practices, including threat modeling, secure coding standards, and code review.

Stay current with security threats, trends, and technologies, and recommend new security controls as needed.

Conduct application security investigations and provide recommendations to mitigate risk.

Maintain security documentation, provide subject matter expertise, and collaborate on security policies, procedures, and standards.

ADDITIONAL RESPONSIBILITIES

Performs other duties as assigned.

EDUCATION

Bachelor's degree in computer science, information security, or a related field

EXPERIENCE

Five (5) years or more experience with OWASP, SAST, DAST, SCA, RASP and common security tools, required.

Seven (7) years or more application security, security engineering, software development, or a related field, required.

Five (5) years or more strong understanding of web application security and common attack vectors. (. SQL injection, XSS, CSRF), required.

Five (5) years or more experience with secure coding practices, threat modeling, and secure software development life cycle (SDLC) methodologies. required

Five (5) years or more proven experience in diagnosing, isolating, resolving complex issues and recommending / implementing strategies to resolve problems, required.

Five (5) years or more demonstrated experience with systems integration processes, methodology and tools, required.

Seven (7) years or more development and scripting experience, required.

Five (5) years or more professional application security role, required.

Five (5) years or more experience with API and Web Security, required.

Three (3) years or more experience with WAF, or similar application security infrastructure a plus, preferred.

Seven (7) years or more experience in integrating security in CI / CD, DevOps, required.

Six (6) years or more experience process or operation management

Six (6) years or more experience Value Stream Mapping, Continuous Flow, Pull Replenishment and other process improvement experience.

SKILLS

Excellent communication skills, both verbal and written, and the ability to work effectively with cross-functional teams.

Ability to create and maintain professional relationships within all levels of the organization (peers, work groups, customers, supervisors).

Ability to work independently and as a member of a team.

Flexibility to operate and self-driven to excel in a fast-paced environment.

Capable of multi-tasking, highly organized, with excellent time management skills

Proficiency in at least one programming language (. Python, .NET, Javascript) with .NET preferred., advanced, required.

Proficiency in at least one common scripting language (. PowerShell, bash, , advanced, required.

Familiarity of NIST framework, PCI, ISO 27001, SOC, SOX, CCPA, GDPR and global regulations, expert, required.

CI / CD experience with Azure Devops, Terraform or other automation and integration technologies, expert, required.

Risk management findings, vulnerability prioritization, threat modeling, and mitigation strategy, advanced, required.

LICENSES

CISSP, OSCP, CASE, or other industry-leading certifications, preferred.

TRAVEL

1-10%

Applicants from California, Colorado, Hawaii, New Jersey, New York City, and Washington :

Salary is determined based on internal equity; internal salary ranges; market

data / ranges; applicant’s skills; prior relevant experience; certain degrees or

certifications, etc.

The salary for this position ranges from $120,000.00 to $150,000.00. Employees may also be eligible

to receive an annual bonus, as applicable.

Ryder offers comprehensive health and welfare benefits, to include medical,

prescription, dental, vision, life insurance and disability insurance options, as well as

paid time off for vacation, illness, bereavement, family and parental leave, and a tax advantaged 401(k) retirement savings plan

Job Category : Information Security

30+ days ago
Related jobs
Ryder System, Inc.
Tallahassee, Florida
Remote

Conduct security assessments that require expertise of our organization's applications using both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) methodologies. The Application Security Engineer must understand development, coding, security engineering, and...

Blackbaud
Remote, Florida, US
Remote

You are either a security-minded software engineer who has been building modern services using a microservice architecture in an agile development environment or a development-interested security practitioner who understands security best practices, but wants to get closer to development and enginee...

Promoted
Brooksource
Tallahassee, Florida

They will engineer/develop custom software applications and databases, implements enhancements to existing systems, troubleshoot application issues, implements integration between applications, and supports the activities of the project team. This developer is a member of a full lifecycle project de...

Promoted
Syms Strategic Group, LLC (SSG)
Tallahassee, Florida

Software Developer in Test (SDET). Bachelor’s degree in Computer Science, Software/Systems Engineering, or equivalent technical degree. Must have comprehensive technical expertise on IT products, operating systems, software, hardware, systems and networks and specialized environments. Bachelor...

Promoted
InterEx Group
FL, United States

We are seeking a skilled Network Engineer with a strong focus on RingCentral to join our team. As a key member of the IT team, you will work closely with other engineers, support staff, and business leaders to ensure the efficient and effective delivery of network services. Troubleshoot and resolve ...

Promoted
Compunnel Inc.
Tallahassee, Florida

As a key member of the full lifecycle project development team, you will play an essential role in developing custom software applications, implementing enhancements, troubleshooting issues, and integrating solutions with existing systems. Familiarity with custom frameworks, high-volume transaction ...

Promoted
Deloitte
Tallahassee, Florida

The Information System Security Engineer (ISSE) will be responsible for creating and maintaining RMF artifacts and shall implement security controls, patch vulnerabilities on network devices, and resolve system security engineering concerns to ensure cyber compliance and readiness for a Government F...

Promoted
Leidos Holding
Key West, FL

The successful candidate will work collaboratively with an outstanding software team and operators and will promote many aspects of the software development lifecycle to include scope and work estimation, architecture and design, coding, and automated testing within an Agile and Continuous Integrati...

Trulieve
Tallahassee, Florida

The Information Security Engineer is responsible for managing the development of information security tools and ensuring technology initiatives are implemented to meet Trulieve security standards and framework. The role of the Information Security Engineer is to be the business customer-facing and t...

SynergisticIT
Tallahassee, Florida

Are you passionate about coding or technology and ready to make your mark in tech? For more than 14 years, SynergisticIT has been helping aspiring developers like you excel in the tech industry. Knowledge of Core Java , javascript , C++ or software programming. ...