Application Security Engineer

Company: Forbes Technical Consulting
Location: Chicago, Illinois, United States
Type: Full-time
Posted: 03.JUL.2019


Application Security Engineer-perm, full time Chicago, IL Permanent, full time with salary, potential bonus, and excellent benefits U...


Application Security Engineer-perm, full time

Chicago, IL

Permanent, full time with salary, potential bonus, and excellent benefits

U.S. Citizens and GC candidates are encouraged to apply. Unfortunately this role does not offer sponsorship at this time.

Please send resumes to Aleta at . Thank you!


  • Must have experience with Security in Devops space
  • 2+ years experience in Node.JS AND Ruby development; developing applications and different functions using those, in a devops environment leveraging those languages, with release cycles, CI/CD
  • Cryptographics expereince, symmetric and asymmetric cryptography

  • Significant development experience with modern programming languages (C++, Ruby, JavaScript, Python)

  • Familiarity with cryptography concepts (AES vs. RSA, PKI, TLS, etc.)
  • Cryptocurrency is an evolving and fast-moving area; the ability to remain nimble yet deliver robust and secure services to clients is essential. Our ideal candidate is a creative and analytical problem solver with strong technical troubleshooting skills and the ability to exercise mature judgment under pressure.
  • Lead application security testing efforts
  • Lead bug intake and remediation process
  • Lead the remediation of application vulnerability scanning and penetration testing

  • Support code reviews across all code platforms

  • Help evolve application security functions and services
  • Identify security exposures and develop mitigation plans
  • Significant experience in application security technologies and processes within public cloud environments (AWS, GCP, etc.) including monitoring and implementing OWASP web application security best practices, API security, authentication mechanism, vulnerability and application scanning, and web application scanning/firewalls (WAS/WAF).

  • Experience with manual and automated software testing, fuzzing, static/dynamic code analysis, and manual code reviews.
  • Strong debugging skills. Ability to spot design flaws, race conditions, performance bottlenecks in complex architectures and simple misconfigurations
  • 4+ years of experience working directly in Application Security
  • Working knowledge of Linux

Preferred skills:

  • Familiarity with technology/tools such as Kubernetes, Docker, Puppet, Jenkins, Ansible, Terraform, etc.
  • Demonstrated ability integrating security concepts into a DevOps Software Development Lifecycle (SDLC), including for threat modeling and security architecture design/specification, both at the full system level component levels
  • Ability to demonstrate past experience making trade-offs between functional and usability requirements with security requirements


Aleta Giordano Ross

Senior Recruiting Consultant

Forbes Technical Consulting LLC | 401 N. Franklin |Suite 3S | Chicago, IL 60654


- provided by Dice

Apply Now


Free eBook

Loader2 Processing ...