PhoenixRecruiter Since 2001
the smart solution for Phoenix jobs

Sr. Application Security Engineer

Company: Shutterfly
Location: Tempe
Posted on: June 16, 2019

Job Description:

Job Description:

This is an exciting time for Shutterfly. In this position you will be an integral part of a developing and expanding Application Security program. The Senior Application Security Engineer is a vital role that helps to provide assurance for Shutterfly's critical applications and securely enables business functions. We're looking for a person who is just as passionate about uncovering a security vulnerability as you are about educating developers on how to fix it. Your focus will be on helping to build and maintain an Application Security program that can be used as the benchmark for our industry.

Your primary duties and responsibilities will include:


  • Demonstrate and promote Secure Software Development Life Cycle
  • Work with security researchers and developers to resolve security issues in our stack
  • Evaluate and classify findings from SAST, DAST, and externally reported sources
  • Perform security testing on internally developed applications and clearly document findings and recommendations
  • Develop and implement security fixes and assist development teams in the same
  • Assist in the development of secure code libraries
  • Act as technical liaison between Information Security and application development teams, including guiding teams towards strong application security practices and remediating known risks
  • Develop and support integration and automation within security, monitoring, reporting, and ticketing platforms
  • Review and analyze existing processes and suggest improvements for increased security and efficiency


    QUALIFICATIONS:

    Minimum Qualifications:

    • 6-8 years working as a developer and 1-3 years specifically in application security
    • Must be well organized, thrive in a sense-of-urgency environment, leverage best practices, and most importantly, innovate through any problem with a can-do attitude.
    • Must have understanding of various systems technologies, architecture fundamentals, next-generation technology and very strong security understanding
    • Proven communication skills, the ability present information clearly and concisely to all levels of management both formally and informally

      Preferred Qualifications:


      • A history of uncovering, exploiting, and remediating application and system security flaws
      • A deep understanding of coding and scripting languages such as Java and Python and the ability to easily switch between a variety of languages quickly
      • Knowledge of and experience with manipulating protocols and libraries in order to compromise the security of a set of systems or code
      • Working knowledge of code versioning tools like Git and continuous delivery tools like Jenkins and Maven
      • Previous experience working on a large code base
      • Familiarity with OWASP top 10 vulnerabilities, mitigations and their impact on application architecture
      • Experience with application security testing including SAST, DAST & RASP tools
      • Experience managing and maintaining an enterprise bug bounty program
      • Experience performing internal architecture and engineering related assessments/reviews
      • Experience working cross functionally with multiple teams to achieve goals
      • Understand information security concepts, protocols, and industry best practices

        Additional Qualifications:


        • Hands on experience in both using and securing Linux based systems and containers.
        • Familiarity with different styles of source control and CI/CD pipeline
        • Experience in deploying and maintaining controls within various public cloud environments (AWS, Azure, Google)
        • Experience with database technologies such as Oracle, Mongo, MySQL, MSSQL, Hadoop and NoSQL
        • Relevant security certifications (SANS/GIAC, CISSP, OCSP, etc.) are highly desirable
        • Proven risk assessment and mitigation skills

Keywords: Shutterfly, Phoenix , Sr. Application Security Engineer, Engineering , Tempe, Arizona

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Engineering Jobs


12Y Geospatial Engineer
Description: 12Y Geospatial Engineer Job ID: 1068392 Job Views: 13 Location: PHOENIX, Arizona, United States ZIP Code: 85008 Job Category: Engineer Posted: 05.29.2019 Age Requirements: Must be between the ages of (more...)
Company: Army National Guard
Location: Phoenix
Posted on: 06/17/2019

Solutions Engineer
Description: Company DescriptionWho we are. We are revolutionizing how brands and consumers interact. Since 2008, our passionate team of designers, engineers, and developers have rapidly grown ZIVELO into a global (more...)
Company: ZIVELO
Location: Scottsdale
Posted on: 06/16/2019

Senior Mine Engineer
Description: Summary Design and develop processes, practices and methodologies in engineering. Lead the execution of the strategy and ensure alignment with the organization's long-term strategy. Initiate and undertake (more...)
Company: CMOC International
Location: Phoenix
Posted on: 06/17/2019


Maintenance Mechanic
Description: Decton Staffing is recruiting experienced Maintenance Mechanics for a warehouse located in the West Phoenix area. If you meet
Company: Decton Staffing Services
Location: Phoenix
Posted on: 06/16/2019

Staff Test Engineer
Description: About IDT... As diverse technologies that span the consumer, communications, and computing markets begin to converge, changing the digital media landscape, our flexibility and ease-of-use are increasingly (more...)
Company: Integrated Device Technology
Location: Tempe
Posted on: 06/16/2019

Chief Mine Engineer
Description: Summary Oversee engineering activities and to ensure service and / or operating standards are met internally and / or externally . Design and develop processes, practices and methodologies in engineering. (more...)
Company: CMOC International
Location: Phoenix
Posted on: 06/16/2019

Diesel Mechanic Flextech Job
Description: Sign up as a FlexTech today and get direct access to great contract opportunities with participating certified Cummins locations br br br br Benefits: br br br BE IN COMMAND br br Empower (more...)
Company: Cummins
Location: Sun City West
Posted on: 06/17/2019

12T Technical Engineer
Description: 12T Technical EngineerJob ID: Job Views: 15Location: PHOENIX, Arizona, United StatesZIP Code: 85008Job Category: EngineerPosted: 05.29.2019Age Requirements: Must be between the ages of 17 and 35Job DescriptionTechnical (more...)
Company: Army National Guard
Location: Phoenix
Posted on: 06/16/2019

Diesel Mechanic Flextech Job
Description: Sign up as a FlexTech today and get direct access to great contract opportunities with participating certified Cummins locations br br br br Benefits: br br br BE IN COMMAND br br Empower (more...)
Company: Cummins
Location: Palo Verde
Posted on: 06/17/2019

Test Engineer
Description: Basic Qualifications Education Requirements: Bachelor's degree in Engineering, a related specialized area or field is required or equivalent experience plus a minimum of 5 years of relevant experience (more...)
Company: General Dynamics Mission Systems
Location: Scottsdale
Posted on: 06/17/2019

Log In or Create An Account

Get the latest Arizona jobs by following @recnetAZ on Twitter!

Phoenix RSS job feeds