Application Security Engineer

Job Summary

Focusing on Web Application Firewall (WAF) monitoring and web application penetration testing, the full-time Application Security Engineer will detect, analyze, and respond to application-layer threats while collaborating with SOC analysts and application teams to enhance security controls.

Key responsibilities

• Monitor and analyze WAF logs and security events to identify malicious activity and potential attacks
• Conduct web application and API penetration testing, providing detailed findings and remediation recommendations
• Collaborate with SOC teams to triage and escalate security incidents involving web applications

Required qualifications

• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or a related technical field (or equivalent experience)
• 3+ years of experience in Application Security, Penetration Testing, or a related cybersecurity role
• Hands-on experience managing and monitoring Web Application Firewalls (WAFs)
• Strong understanding of the OWASP Top 10 and common web application attack vectors
• Proficiency with security testing tools such as Burp Suite, OWASP ZAP, and SQLMap