Team Lead AppSec Engineer

Description

Who are we?

Checkmarx is the enterprise application security leader and the host of Checkmarx One™ — the industry -leading cloud-native AppSec platform that helps enterprises build #DevSecTrust.   

Powered by the intelligence from our industry-leading AppSec security research team, and our AI-driven technology and services, our platform is designed to enable CISOs, AppSec and development leaders to prioritize their teams’ focus on what impacts their business.  

Our offerings secure every phase of development for every application, from the very first line of code through production, while simultaneously balancing the dynamic needs of security and development teams.  

We are honored to serve more than 1,800 customers, which includes 60 percent of all Fortune 100 organizations. We are committed to moving forward with the unwavering dedication to the safety and security of our customers, and the applications that power our day-to-day lives. 

What are we looking for?

Checkmarx, a leader in the application security testing market, actively seeks talented application security engineers (AppSec Eng.) to support Checkmarx Global Services and our customers. The perfect candidate has a robust background in software development and application security.

How will you make an impact?

· Support some of our top-tier customers in conducting security-focused code reviews using the Checkmarx Platform.

· Support customer's AppSec and Dev Teams with mitigation advice for identified vulnerabilities.

· Research and create proof-of-concept based on identified vector attacks.

Daily and monthly responsibilities:

· Conduct security-focused statical code and software composition analysis on top of a broad range of development languages and open-source libraries.

· Support customer AppSec/Dev teams with mitigation strategy/advice for identified vulnerabilities.

· When required, create proofs-of-concept that can illustrate a given vulnerability exploitability.

· When needed, support AppSec/Dev teams in analyzing applications architecture.

· Support less experienced engineers on ramping-up their AppSec technical skills;

Requirements

What You’ll Need:

·Bachelor's degree in computer science or another highly technical scientific discipline.

·+7 years experience in one or more high-level programming languages like Java, .Net, Go, Python, etc.

·+7 years experience in security-focused code review covering some market standards AppSec Frameworks like OWASP Web/API/Mobile Top 10, PCI-DSS, etc.

·Deep understanding of large enterprise-grade systems and architectures, as also as modern development paradigms.

·A proactive approach to spotting problems, areas for improvement, and performance bottlenecks.

·Strong technical aptitude - being able to pick up technical concepts rapidly is required.

·Highly motivated self-starter.

·Fluent in English (++ for other languages).

· ++ For security related certifications

· ++ for proven experience with security-focused code review using Checkmarx technologies

The fine print:

·      Work from office/home (hybrid).

·      Some international travel required (less than 10%)

If you have the skillset we’re looking for, we will get you up-to-speed with Checkmarx Platform solutions and invest in you to improve your knowledge and technical skills. Your new title will be Checkmarx Senior Application Security Engineer.

What we have to offer

Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great work-life balance, as well as great benefits and perks throughout the year. Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.