Certain roles at Tyson require background checks. If you are offered a position that requires a background check you will be provided additional documentation to complete once an offer has been extended.
Job Details:
Job Summary
Join our team as Senior Application Security Engineer, where you'll be integral in protecting our applications from security threats and vulnerabilities. In collaboration with our development and testing teams, you'll conduct security testing, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and penetration testing. Your role is crucial in maintaining the integrity and security of our software applications. You'll also work with various teams to integrate security best practices throughout the software development lifecycle, automate security measures, and contribute to the overall enhancement of our application security.
Responsibilities:
- Vulnerability Management: Proactively identify and remediate security vulnerabilities within our applications, performing regular assessments and code reviews.
- Security Tooling: Employ a range of security tools to monitor and respond to threats.
- Cloud and Container Security: Understand the basics of cloud platforms and container technologies to secure applications, with a focus on AWS, Azure, or Google Cloud.
- Secure Development Lifecycle: Assist in embedding security into the software development process from design to deployment.
- Security Testing: Conduct both SAST and DAST to ensure code quality and application security.
- Collaboration: Work with various teams to promote a security-first culture within the organization.
- Policy and Compliance: Support the enforcement of security policies and standards in line with industry best practices.
- Risk Management: Participate in risk assessments and implement controls to mitigate security risks.
- Documentation: Maintain security documentation to keep stakeholders informed.
Requirements:
- Education: A bachelor's degree in computer science, cybersecurity, or a related field, or equivalent practical experience.
- Certifications (e.g., CompTIA Security+, CEH, Certified Kubernetes Security Specialist, Certified Cloud Security Professional) are beneficial but not mandatory.
- Experience: Practical experience with security testing tools and familiarity with GitLab or Jenkins is preferred. (e.g., Fortify, Veracode, Burp Suite, SonarQube, Kali Linux, Metasploit, Bishop Fox, etc.).
- Container and Cloud Knowledge: Basic understanding of container technologies and cloud platforms.
- Security Principles: Awareness of common security vulnerabilities and mitigation strategies.
- Programming Knowledge: Familiarity with programming languages and development frameworks is helpful.
- Communication Skills: Strong ability to communicate technical concepts to a diverse audience.
- Analytical Skills: Good problem-solving abilities to address security challenges.
Relocation Assistance Eligible:
No
Work Shift:
Hourly Applicants ONLY -You must complete the task after submitting your application to provide additional information to be considered for employment.
Tyson is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will be considered without regard to race, national origin, color, religion, age, genetics, sex, sexual orientation, gender identity, disability or veteran status.
We provide our team members and their families with paid time off; 401(k) plans; affordable health, life, dental, vision and prescription drug benefits; and more.
If you would like to learn more about your data privacy rights and how you may use that information, please read our Job Applicant Privacy Notice here.
