- Provide guidance and support to IT and business partners in implementing secure coding practices and integrating security into the development lifecycle.
- Collaborate with development teams to perform static, dynamic, and interactive application testing and secure source code, genealogy, and Software Bill of Materials reviews of proprietary applications including but not limited to web, mobile, and web service applications to identify vulnerabilities. Code reviews and software composition analysis may involve manual testing and analysis as well as use of automated application vulnerability scanning/testing tools.
- Lead the development, evaluation and implementation of vulnerability management tools and process to support static, dynamic, and interactive application security testing as well as code genealogy, secure container, and Infrastructure as code analysis.
- Provide strategic direction for application security and vulnerability management programs across the enterprise.
- Provide recommendations on Information Security policies, standards, processes, and defining governance procedures for secure application development.
- Develop, enhance, and provide input into development of KPI, KRI and other metrics related to software vulnerability management.
- Research and keep up to date with the latest security trends, vulnerabilities, and industry best practices, and ensure their integration into company software development processes.
- 3+ years of professional experience focused on Application Security.
- 5+ years of professional experience in Application Development roles.
- Experience with security concepts and tooling such as: SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), and Web Application Penetration Testing.
- Hands-on experience in application secure source code review, software composition analysis, opensource library and artifact vulnerability management.
- History of securing complex applications, preferably in a manufacturing setting.
- Experience with multiple objected oriented coding programming languages, application architectures, and front-end frameworks.
- Willingness to participate in Agile/Scrum development process.
- Strong communication and technical skills with the ability to communicate between business and technical stakeholders.
- Experience with securing public cloud platform services such as AWS, Azure, Google.
- Experience with secure CI/CD pipeline design and architecture, automation, and secure code gating.
- CISSP, CCSP, CSSLP, or other relevant certifications
- Experiencing supporting global organizations in the manufacturing industry.
- Ability to adapt to a dynamic environment
- Fluent in English and Spanish
-
Security Engineer
2 hours ago
PNC Dallas, United StatesPosition Overview · At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our em ...
-
Security Engineer
2 hours ago
AppLab Systems Inc Dallas, United StatesHi, · Hope you are doing good... · I am · Baiju · represented to Applab Systems and I have an excellent job opportunity for you. Please find the below job description and if you are comfortable, please reply or contact me for further discussion. · Job Title: · Security Engi ...
-
Security Engineer
2 days ago
DerbySoft Dallas, United StatesJob Description · Job DescriptionAbout DerbySoft · Connecting different businesses together is what DerbySoft's all about. We make the travel business easier by developing intelligent technology services delivering superior performance for our customers around the globe. We're pa ...
-
Cyber Security Engineer
1 week ago
Yoh, A Day & Zimmermann Company Dallas, United StatesPosition: Cyber Security Engineer · Employment Type: Contract to Hire · Location: Dallas, TX (Hybrid) · Responsibilities: · Implement, manage, and improve security measures within our M365 environment to protect emails, documents, and sensitive data in collaboration tools. · Admi ...
-
Security Engineer
13 hours ago
Omni Inclusive Dallas, United StatesPlease share senior resource with min 10+ years of experience. · Job Description: · Technical skill set · • Must have hands on experience in installing, managing, and troubleshooting with Cisco Client and its functionalities like RADIUS, TACACS, 802.1x, Profiling and Guest work ...
-
Security Engineer
3 weeks ago
eTeam Dallas, United StatesJob Description: · Technical skill set Must have hands on experience in installing, managing, and troubleshooting with Cisco Client and its functionalities like RADIUS, TACACS, 802.1x, Profiling and Guest workflow. · Understanding of cisco Client concepts like Client Policy sets ...
-
Security Engineer
2 hours ago
Omni Inclusive Dallas, United StatesPlease share senior resource with min 10+ years of experience. · Job Description: · Technical skill set · Must have hands on experience in installing, managing, and troubleshooting with Cisco Client and its functionalities like RADIUS, TACACS, 802.1x, Profiling and Guest workfl ...
-
Network Security Engineer
3 weeks ago
Peterson Tech Partners Dallas, United StatesJob Description · MUST HAVE experience with Palo Alto, Prisma Access. - This is hybrid opportunity with 3-5 days onsite at Dallas, TX** · Responsibilities: · You will be a key player on a team responsible for all aspects of Network Security. You may be a SME in some domains, but ...
-
Cyber Security Engineer
2 weeks ago
GTN Technical Staffing and Consulting Dallas, United StatesNO THIRD PARTY CANDIDATES. ONLY CANDIDATES THAT DON'T REQUIRE SPONSORSHIP - MUST BE ABLE TO CONVERT TO PERM WITHOUT SPONSORSHIP. WILL NOT BE CONSIDERED IF CAN'T. · Cybersecurity Engineer · DETAILS · Location: Dallas, TX · Work Schedule: Hybrid - 2/3 in-office/remote · Position T ...
-
Cloud Security Engineer
1 week ago
Seneca Resources Dallas, United StatesPosition Title: · Cloud Security Engineer (AWS) · Location: · Charlotte, NC; Malvern, PA; Dallas, TX (preferred); Scottsdale, AZ · Position Status: · Contract to Hire and Direct Hire (multiple positions open) · Position Description: · Our client is looking for · Cloud Securi ...
-
Offensive Security Engineer
13 hours ago
Salesforce Dallas, United StatesTo get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job CategoryProduct · Job DetailsAbout SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ D ...
-
Senior Security Engineer, Cybersecurity
3 weeks ago
Motion Recruitment Dallas, United StatesThis North America transportation and logistics industry leader has an immediate contract-to-hire opportunity in Dallas or Austin, TX for a Senior Security Engineer, Cybersecurity. Preference for candidates within the Dallas or Austin market, willing to work onsite 2-3 days per w ...
-
Cyber Security Engineer
3 weeks ago
Yoh, A Day & Zimmermann Company Dallas, United StatesUS Citizens or GC Holders Only · No 3rd Parties · No Sponsorship · Must live in the Dallas, TX area · I am working with a client in Dallas that is looking for a Cyber Security Engineer. Here are the details. · 4+ years of experience in cyber security, specializing in Microsoft 36 ...
-
Application Security Engineer
4 weeks ago
U.S. Bank Dallas, United StatesAt U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each ...
-
Cyber Security Engineer
3 weeks ago
Yoh, A Day & Zimmermann Company Dallas, United StatesPosition: Cyber Security Engineer · Employment Type: Contract to Hire · Location: Dallas, TX (Hybrid) · Responsibilities: · Implement, manage, and improve security measures within our M365 environment to protect emails, documents, and sensitive data in collaboration tools. · Admi ...
-
Principal, Security Engineering
3 weeks ago
The Options Clearing Corporation Dallas, United StatesWhat You'll Do: · OTSI is OCC's technology strategy, research, and development team. The team focuses on architectural design, problem solving, and security using cutting edge technologies to deliver solutions for the organization as part of the OCC Unified Technology Strategy. · ...
-
Information Security Engineer
1 week ago
Collabera Dallas, United StatesHome · Search Jobs · Job Description · Information Security Engineer · Remote: Dallas, Texas, US · Salary: $60.00 Per Hour · Job Code: · End Date: · Days Left: 25 days, 3 hours left · Apply · ************************Contract to hire************************ · 100% Remote ...
-
Application Security Engineer
3 weeks ago
ARCHE Dallas, United StatesApplication Security Engineer #5037-1 · ESSENTIAL DUTIES AND RESPONSIBILITIES: · Be a broker of security, being able to understand the benefits of security, while being mindful of the needs of development teams all over the world. · Assist our development teams with onboarding, ...
-
DevOps Security Engineer
1 week ago
Cambium Learning Group Dallas, United StatesJob Overview: · An Explore Learning DevOps Security Engineer has a pivotal role in the construction and delivery of our award-winning educational products. Our products include a series of highly engaging games that create an exceptional learning experience. In this role, you wi ...
-
Sr Security Engineer
2 weeks ago
Amzur Technologies, Inc. Dallas, United StatesContract to Hire Opportunity · The Senior Engineer, Information Security Operations role is responsible for assisting with day-to-day tasks that include cloud security, vulnerability assessments, and incident response. Responsibilities include threat modeling, identifying process ...
Cybersecurity Application Security Engineer - Dallas, United States - Trinity Industries, Inc.
Description
Trinity Industries is searching for a talented team player to fill the open position of Cybersecurity Application Security Engineer in our Dallas, Texas headquarters.
The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static, dynamic, and interactive application security testing, code genealogy reviews, evaluation of container, Infrastructure as code, orchestration/automation, and application integrations to ensure implementations adhere to documented cybersecurity policies, standards, requirements, and processes.
The Cybersecurity Application Development Engineer will act as trusted advisor to internal and external stakeholders to promote secure software development practices. The successful candidate will work with IT and business partners to provide cybersecurity guidance, best practice, implementation requirements, and analysis of applications, source code, and services delivery to identify risk and recommend mitigations relating to the software development lifecycle.
This individual will deliver recommendations for policy, processes, and standards relating to the secure delivery of applications and services. This role requires deep technical knowledge in establishing a secure software development lifecycle (SSDLC), including application architecture, programming languages, CI/CD pipeline, and industries best practices related to secure software development.
The successful candidate will collaborate with development teams to assist with the delivery of secure solutions to support business strategies while protecting Trinity Industries, Inc.' s intellectual property, networks, partnerships, customers, and services.
What you'll do:
What you'll need:
Preferred Qualifications:
EOE