Job description

The Application Security Engineer will conduct manual penetration tests, assess risk levels, and integrate security engineering test automation into a CI/CD pipeline. Required skills include experience in application pen testing, web services/API testing, mobile app testing, and effective communication and collaboration skills.

Responsibility

• Conducting manual penetration tests of NCR Voyix software.
• Assessing risk level of security findings using standard methodologies.
• Running automated application security tools.
• Writing and presenting pen test reports to development teams.
• Consulting with development teams on remediation techniques and defensive coding.
• Validation testing to confirm findings are closed.
• Develop, integrate, and enable security engineering test automation into a CI/CD pipeline.
• Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes.

Qualifications

• Bachelor’s Degree in Computer Science or related field - equivalent work experience ok.
• At least 2 years of experience of Application pen testing background.
• Web application test experience.
• Web services/API test experience.
• Mobile application test experience (iOS and Android).
• Effective communication, collaboration, and written skills.