Application Security Engineer

Responsibilities:

• Performs security audit, penetration testing of external and internal-facing assets
• Identifies vulnerabilities, evaluates risks, and communicates findings to Security Manager

Requirements:

• Bachelor degree in an IT field such as Computer Science, Engineering, MIS, etc.
• >3 years of experience in Information Security conducting web & mobile application testing, identifying root cause problems, analyzing vulnerabilities, and helping develop platform specific remediation plans
• Hands-on experience performing security assessments that involve manual and automated testing, analysis, and exploitation utilizing tools such as nmap, Metasploit / Metasploit Pro, Kali and Burp Suite Professional
• Strong programming experience with JavaScript, have experience performing source code review 
• Hands-on experience with scripting languages such as Python, Shell, Perl, or Ruby – strongly prefer candidates with experience conducting manual pen testing utilizing scripting skills
• Familiarity with Open Web Application Security Project (OWASP)
• OSCP, OSWE or GPEN certification(s) (preferred)
• Strong organizational skills and analytical/problem-solving skills
• Ability to manage deadlines and work effectively under pressure
• A self-starter, adaptive and flexible to change
• Ability to stay up-to-date in the ever-changing security environment
• Familiarity with Blockchain technology is a plus