Prudential's Cloud Automation Team is looking for an Application Security Engineer to join their team. They need someone to protect their business applications from security attacks by developing, inserting, and testing security components to make the applications more secure. The right person for this job will be well versed with open-source software, managing vulnerabilities, and patching efforts. This person will be tasked with preventing potential attacks, securing sensitive information, and ensuring customers' trust. You will also be responsible for implementing, integrating, and testing of security scan automation as well as identifying, communicating, and providing targeted remediation of vulnerabilities. This is an exciting opportunity on a fast-paced team in a large enterprise environment!
* Strong experience as an Application Security Engineer
* Experience collaborating with developers to set up security control measures during every stage of the SDLC
* Strong skills within application authentication, authorization, encryption, logging, and security testing
* Experience identifying false positives
* Experience with cross site scripting (XSS) attacks
* Familiar with Jenkins based CI/CD Pipelines
* Strong experience with SAST, DAST, or SCA
* Familiar with integrating security tools and providing vulnerability assessments. Leveraging tools such as Burp Suite Enterprise, CheckMarx, NowSecure, OWASP ZAP
* Strong automation skills within Ansible or Python. Working knowledge of using API to interact with web services provided by tools
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.