Application Security Engineer

Application Security Engineer with Large Media Company
6 Month Assignment- FULLY REMOTE BUT MUST GO TO CALIFORNIA FOR TRANING FIRST WEEK
Pay Range-  $55-$77 per hour w2 based on experience 

The position is a great opportunity for an entry level Application Security Engineer or people who want to jump into Application Security Career path.
You will provide hands-on validation of static code analysis results and software composition analysis results, then communicate with developers to fix with guidance.
You will work with another application security engineer and be a part of the security team for the assigned business domain.
Key Responsibilities
● Collaborate with engineers to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC).
● Perform hands-on analysis against static code scan results and software composition scan results of products and services to proactively discover risks and supervise them to resolution.
● High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security.
● Collaborate with other application security engineers to align tasks with product development schedules and complete tasks in every release timing.
Qualifications
● 2+ years’ experience working within software development.
● A bachelor’s degree in Computer Science/Information Security/Cyber Security or equivalent.
● Excellent written and oral communication skills, as well as social skills including the ability to articulate to both technical and non-technical audiences.
● Able to work both independently as well with development teams and multi-task effectively.
● Firm understanding of enterprise class application architectures that are highly scalable and reliable and the expertise to secure them.
● Experience of security architecture and design reviews.
● Experience with multiple languages such as Java, Go, Python and Perl etc. and understand how to detect and remedy related security issues such as OWASP top 10.
Desired Experience
● Excellent analytical, evaluative, and problem-solving abilities.
● Experience with securing host, database, and application solutions for multi-tier systems.
● Experience with Penetration Testing.
● Knowledge of automated attack tools and developing mitigation techniques.
● Hacker Mindset and always strives to think like an attacker.
● Experience with AWS and Akamai technologies.
● Technical certifications within information security are a plus (CISSP, CCSP, GIAC or equivalents).






Estimated Min Rate: $55.00
Estimated Max Rate: $77.00

Note: Any pay ranges displayed are estimations.  Actual pay is determined by an applicant's experience, technical expertise, and other qualifications as listed in the job description.  All qualified applicants are welcome to apply.

Yoh, a Day & Zimmermann company, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Visit https://www.yoh.com/applicants-with-disabilities to contact us if you are an individual with a disability and require accommodation in the application process.

For California applicants, qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.  All of the material job duties described in this posting are job duties for which a criminal history may have a direct, adverse, and negative relationship potentially resulting in the withdrawal of a conditional offer of employment.