Insight Global, LLC Hiring for Application Security Engineer at Altoona, Pennsylvania Full Time

Job Description

Insight Global is seeking an Application Security Engineer to sit remotely for a large retail client headquartered in the greater Pittsburgh area! Our client recently kicked off a major project to build their own home-grown eCommerce platform and applications that will be used internally and then deployed out into their 600+ retail locations. In this role, the Application Security Engineer will be a member of the RISC team and will be focusing on — Design, implement, and enforce security policies that protect systems and data from security risks. Responsible for the identification, investigation, and resolution of security events detected by those systems. Tasks may include involvement in the implementation of new security solutions; participation in the creation / maintenance of policies, standards, baselines, guidelines, and procedures; and conducting vulnerability audits and assessments.

Additional responsibilities will include:

*Support / Execute the implementation of a risk and policy framework via CI/CD pipelines to support the department’s accountability in setting risk and security policies, standards, guidelines, processes, and procedures.

*Maintain up-to-date in-depth knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.

*Recommend additional security solutions, or enhancements to existing security solutions to improve overall enterprise security.

*Perform the deployment integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with industry and company standards.

*Research the use of new or existing tooling or processes to advance the CI/CD ecosystem, the integration of new technologies or processes into existing pipelines and make recommendations for the purchase of software and hardware solutions for the creation and maintenance of first class CICD pipelines.

*Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (e.g., security tools) or not (e.g., workstations, servers)

*Participate / advise in the design and execution of vulnerability assessments, penetration tests, and security audits.

*Provide call escalation for in-place security solutions to CI/CD pipelines.

*Collaborate with core business partners and other security teams to improve controls via creation of process design which meet the evolving business needs for customer experience and efficiency.

*Provide risk consulting and/or training to business and technical partners to improve the effectiveness of risk management across the enterprise.

Skills and Requirements

*Bachelor’s degree in Computer Science, Engineering or related field required.

*Minimum 3 years’ cyber security experience required

*Previous experience with automated application security testing tools required (they use Burp suite)

*Previous coding experience beyond simple scripts is required.

*Ability to program (structured and OO) with one or more high level languages (i.e., Python, Java, Angular, or React) *Minimum 1 year experience in IP, TCP/IP, and other network administration protocols preferred

*Minimum 1 year working experience of Windows and Linux systems preferred

*CISSP Cert”’

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to [email protected].”’