Senior Application Security Engineer

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from Canarys

Canarys is a leading IT solutions provider with over 30 years of experience in the industry. We specialize in enabling digital transformation for businesses through our comprehensive range of software solutions, including digitalization, modernization, automation, and intelligence. With a team of 500+ technology professionals, we are dedicated to delivering innovative and tailored solutions to meet our clients' needs. Our expertise spans various industry sectors such as BFSI, Retail, Healthcare, Pharmaceutical, Manufacturing, and Insurance.

Role Description

This is a contract role fully remote for a Senior Application Security Engineer based in United States, with some work from home acceptable. The Senior Application Security Engineer will be responsible for ensuring the security of software applications through rigorous testing and analysis. Day-to-day tasks include conducting security assessments, identifying vulnerabilities, developing and implementing security measures, and collaborating with development teams to integrate security into the software development lifecycle. The role also involves staying up-to-date with the latest security trends and technologies, providing guidance on security best practices, and ensuring compliance with industry standards and regulations.

Must Have:-

• Seeking candidates with solid expertise in Manual web application penetration testing and Manual secure code review.
• Expertise is performing Manual Test Case Scenarios is a must.
• Identification of Vulnerabilities in Source Codes manually is a must.

Not Looking:-

• We are not looking for tool dependent SAST and DAST resources.
• False positives review post SAST & DAST tool-based scanning will not be considered.

Key Areas:-

• Perform manual security code review against common programming languages (Java, .NET)
• Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications
• Formal programming experience is a must in Java/c# – at least 6 months
• Create new testing methods to identify vulnerabilities and entry points that attackers may use to exploit applications, networks, and systems

Good to Have:

• One or more major ethical hacking certifications not mandatory but preferred; GWAPT, CREST, OSCP, OSWE, OSWA
• Provide technical leadership and advice to team members on penetration test engagements
• Converse with technical and non-technical audiences to articulate both testing processes, techniques and results
• Partner with the Cyber teams to develop new testing techniques, automation for testing and marketing collateral to support the practice and mentor junior and offshore team members on tools and techniques in performing tests

• Seniority level
  Mid-Senior level

• Employment type
  Contract

• Job function
  Information Technology
• Industries
  Software Development

Referrals increase your chances of interviewing at Canarys by 2x

Get notified about new Senior Application Security Engineer jobs in United States.

United States
$192,200.00
-
$225,810.00
1 week ago

United States
$141,600.00
-
$212,400.00
2 weeks ago

United States
$150,000.00
-
$200,000.00
2 weeks ago

United States
$162,900.00
-
$191,600.00
2 weeks ago

United States
$125,000.00
-
$170,000.00
1 week ago

United States $180,000 - $220,000 1 day ago

Washington, DC $150,000 - $180,000 1 week ago

United States $150,000 - $180,000 5 days ago

United States $123,200 - $184,800 1 week ago

United States $110,000 - $125,000 4 days ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.