Security Engineer

Job Summary

To support the Product Development organization, the fully remote Security Engineer will conduct security requirements analysis, perform vulnerability scanning, and collaborate with cross-functional teams to integrate security into the software development lifecycle.

Key responsibilities

• Conduct security requirements gathering and analysis across application, infrastructure, and cloud components to identify threats and vulnerabilities
• Perform vulnerability scanning and triage using tools such as Tenable/Nessus and Veracode, prioritizing remediation and tracking issues
• Partner with product, engineering, and operations teams to embed security into the SDLC and provide risk-based feedback on emerging threats

Required qualifications

• 3-5 years of relevant software development/security experience and 2 years with security vulnerability scanning tools
• Strong understanding of software weaknesses (OWASP) and familiarity with programming languages
• Experience in scanning .NET CORE applications and knowledge of Microsoft Azure
• Security+ or greater certification
• Proven ability to design and recommend mitigations for security weaknesses and vulnerabilities