The Application Security Engineer will ensure security is integrated into the software development lifecycle, perform application security reviews, and manage vulnerabilities.
Responsible for working with Clearwater Analytics development teams to ensure security is injected into the software development lifecycle and products are secure. This role will focus on implementing, enforcing and validating secure coding practices and engaging directly in application security reviews, threat modeling and ownership over application security vulnerability management.
Responsibilities:
- Engage in application security reviews and threat modeling, including code review and dynamic testing.
- Ability to suggest and implement improvements to existing processes/tooling.
- Ongoing facilitation of application security vulnerability management
- Advise and support development teams in the area of application security
- Demonstrate professional application of information security, compliance, assurance and/or other security practices and principles.
- Participates in projects and penetration test engagements
- Up to date on evolving threats and security vulnerabilities
- Ability to assess risk based on a given risk assessment framework
- Actively seeks out opportunities to improve key systems, does not need to be directed on a daily basis.
- Can help organize a group and coordinate projects or resolution of issues.
- Assists in definition, documentation, and evolution of best practices for application security program
- Goes above and beyond basic requirements to support their own team and others.
- Helps to identify key gaps in security and tooling functionality that will drive significant improvement in application security
- Has the ability to take an assignment, project or problem and define, lead and implement a solution to completion.
Requirements:
- Prior experience working in Application Security.
- Proven hands-on experience with security tools such as Burp Suite, OWASP ZAP, and Kali Linux
- Working knowledge of the OWASP Top 10 and how to apply the standard to minimize security risk.
- Understanding of security best practices and how to implement them at an enterprise level.
- Basic coding skills – SQL, Python, other scripting languages.
- Knowledge of secure coding principles and experience with code review processes.
- Understanding of common Information Security concepts, practices, and procedures
- Understanding of vulnerability analysis, penetration testing, encryption technologies, intrusion detection, incident response
- Strong written and oral communication skills and the ability to prioritize work
- Strong aptitude for problem solving, math, and communication
- Strong organizational and interpersonal skill
Desired Experience or Skills:
- Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related area of study
- Five years of information security experience
- Experience in at least one programming language
- Proficiency with SQL, Python, and/or Java
- Industry certifications in cyber security incident management
- Application Development experience
- SANS GIAC, CEH, CompTIA Security+
Top Skills
Burp Suite
Java
Kali Linux
Owasp Zap
Python
SQL
Similar Jobs at Enfusion, a Clearwater Analytics company
Fintech • Software • Financial Services
The Core Engineer designs and manages software systems, mentors team members, and ensures software performance and reliability through coding and problem-solving.
Top Skills:
Object-Oriented Programming
Fintech • Software • Financial Services
The Information Security Analyst develops and enforces security measures, conducts audits, assesses vulnerabilities, responds to breaches, and enhances protection protocols.
Top Skills:
Atlassian SuiteCrowdstrikeGoogle ChronicleAzureMicrosoft DefenderMS OfficeRapid7 IdrRapid7 InsightvmSentineloneSplunkTenable
Fintech • Software • Financial Services
Lead a software development team, ensuring quality and efficient processes, fostering growth, and delivering high-impact projects in an Agile environment.
Top Skills:
C++DockerJavaJavaScriptLinuxPythonRustSdlc Tools
What you need to know about the Chennai Tech Scene
To locals, it's no secret that South India is leading the charge in big data infrastructure. While the environmental impact of data centers has long been a concern, emerging hubs like Chennai are favored by companies seeking ready access to renewable energy resources, which provide more sustainable and cost-effective solutions. As a result, Chennai, along with neighboring Bengaluru and Hyderabad, is poised for significant growth, with a projected 65 percent increase in data center capacity over the next decade.