Application Security Lead - SAST, DAST, Secure Code Review

Company Overview

Information about the company is not provided.

Job Summary

The Application Security Lead will be responsible for overseeing the security of application development. This includes implementing Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), secure code reviews, and managing vulnerabilities within the application lifecycle. The role focuses on ensuring that applications are built securely and meet the organization's compliance and security requirements.

Responsibilities

• Lead the application security initiatives focused on SAST and DAST methodologies.
• Conduct secure code reviews to identify and remediate vulnerabilities during the development process.
• Manage vulnerability assessments and provide recommendations for vulnerability mitigation.
• Collaborate with development teams to integrate security practices into the software development lifecycle.
• Educate and train development teams on secure coding practices and application security principles.
• Ensure compliance with security policies and regulatory requirements.

Qualifications

• Strong expertise in Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
• Experience in secure code review processes and tools.
• Proficiency in vulnerability management and mitigation strategies.
• Knowledge of security frameworks and standards (e.g., OWASP, NIST).
• Familiarity with programming languages and development frameworks.
• Excellent problem-solving and analytical skills.
• Strong communication and collaboration abilities.
• Relevant certifications in application security (e.g., Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or equivalent) are preferred.

Preferred Skills

• Experience with application security tools and technologies.
• Knowledge of cloud security principles and practices.
• Familiarity with Agile and DevOps methodologies.

Experience

• Previous experience in application security roles, with a focus on SAST, DAST, and secure code review.
• Experience in vulnerability management within an enterprise setting.

Environment

Information about the work setting and location is not provided.

Salary

Salary information is not provided.

Growth Opportunities

Information about potential career advancement opportunities is not provided.

Benefits

Information about offered benefits is not provided.