This Permanent Hire Position is with one of our Direct Clients. Please submit resumes to Remya- mremya(at)divihn(dot)com or call (630) 847 7118 with any questions.
Job Title: Application Security Lead (remote work flexibility)
Location: Austin, TX (remote work flexibility), This position is based out of Austin, TX or Baltimore, MD, but has remote work flexibility
Make a real-world security impact to 200M athletes and fitness enthusiasts globally as an Application Security Lead for of Fitness and E-Commerce applications. As the Application Security Lead on the Digital Product Security team, you will build and leverage tools, vendor solutions, and automation to secure our MapMyFitness and eCommerce spanning web, mobile, APIs and even wearable devices.
The Application Security Lead on Digital Product Security team builds and leverages tools, vendor products, and automation to secure our MapMyFitness and eCommerce apps. The application code base spans web, mobile (iOS and Android), application programming interfaces and even wearable devices.
ESSENTIAL DUTIES and RESPONSIBILITIES
Lead the evaluation and improvement of our software development life cycle (SDLC) and software security maturity model
Identify and investigate vulnerabilities in web, mobile (iOS and Android), API, and Infrastructure as Code
Implement and leverage code repository native and add-on security services, especially Github Advanced Security
Develop code that leverages open source security tools and vendor tools/APIs to fill capability gaps in order to improve coverage and reduce identification time
Subject matter expert during the entire development lifecycle to include design, development, QA and security testing, and production
QUALIFICATIONS (KNOWLEDGE, SKILLS and ABILITES)
Strong familiarity with OWASP Top Ten, SAST, DAST, and vulnerability management
Familiar with multiple programming languages and the ability to quickly learn new ones
Ability to perform application penetration testing
Knowledge of numerous software security vendors and products
Solid understanding of code security fundamentals to build and secure internet-scale applications
Strong cross-functional teaming skills to coordinate and implement security changes/solutions with product and engineering teams
Comfortable with Amazon Web Services (AWS), to include the command line/API, and container-based deployments and orchestration tools
EDUCATION AND/OR EXPERIENCE:
Computer science/IT/engineering bachelor's degree
Requires 7 years of cyber security experience
Requires 4 years of technical, hands-on application security experience and/or app penetration testing
Experience coding scripts and using APIs to build custom application security solutions
Experience working in DevOps environments using JIRA ticketing workflows
Experience with regulatory frameworks such as PCI, GDPR, and CCPA
Travel: ?5% per year
Cyber Security and/or Application Security Certifications preferred
Software development background preferred
This position is based out of Austin, TX or Baltimore, MD, but has remote work flexibility
BENEFITS AND PERKS (General Corporate Perks):
Paid Client Give Back Volunteer Days: Work alongside your team to support initiatives in your local community.
Client Merchandise and Connected Fitness app Discounts.
Competitive 401(k) plan matching.
Maternity and Parental Leave for eligible and FMLA-eligible teammates
Health and fitness benefits, discounts and resources- We offer teammates across the country programs to promote physical activity and overall well-being.
About us: DivIHN, the 'IT Asset Performance Services' organization, provides Professional Consulting, Custom Projects, and Professional Resource Augmentation services to clients in the Mid-West and beyond. The strategic characteristics of the organization are Standardization, Specialization, and Collaboration.
DivIHN is an equal opportunity employer. DivIHN does not and shall not discriminate against any employee or qualified applicant on the basis of race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status.