Application Security Engineer

Core Requirements:

• Familiarity with the secure SDLC
• Proficiency in at least one programming language
• Experience conducting code reviews from a cybersecurity perspective
• Familiarity with the OWASP Top 10 (e.g., XSS, CSRF, etc.)
• Experience with OAUTH and ADFS
• Experience conducting security assessments, including assessing the security of third-party vendors
• Stay up to date on the latest security and industry trends including their compliance requirements
• Maintain knowledge of cybersecurity frameworks such as NIST and CIS and other security technology by attending workshops and reviewing publications
• Responsible for overseeing the security controls for the company with minimal oversight
• Responsible for designing and implementing new security technologies with minimal oversight
• With minimal oversight, provide training to other members of the team
• With minimal oversight, maintain complex project tasks and interface with various teams
• Provide thoughts on and assist in developing new features to be added to the SIEM
• With oversight, identify and design new security policies for the organization
• With minimal oversight, assist in maintaining PCI compliance of the organization
• With minimal oversight, assist in the design and implementation of a vulnerability management program
• With minimal oversight, aid in the design, implementation, and enhancement of the security awareness program
• Effectively deal with rapid change in a positive manner
• Assist in process improvements to enhance the efficiency of current operational procedures
• Coordinate relations with and serve as a liaison between business and IT staff
• Assist in developing short-term and long-term department goals which support long-term strategic goals
• Ensure the coordination and communication of production changes
• Participate in all company/location driven communication efforts, including huddles, department meetings, and other related efforts
• Maintain a positive and professional working relationship with peers, management, support resources, and the community with a constant commitment to teamwork and exemplary customer service to present a professional image of D&H Distributing
• Perform all other duties as assigned by management in a professional and efficient manner

Do you have experience in Vulnerability management?, Do you have a Associate's degree?, For this role, applicants should be proficient in assessing application security. This includes an understanding of the security software development lifecycle (SDLC), as well as being proficient in at least one programming language., * Proficiency in web development, .NET, and/or Java

• Familiarity with API security best practices
• Experience conducting code reviews from a cybersecurity perspective
• Ability to design and support the implementation of security as part of the continuous deployment process, * Associates degree in Cybersecurity or similar area of study required or equivalent years of related work experience
• Bachelor's degree in Cybersecurity or similar area of study preferred
• At least 3-5 years of experience in cybersecurity with application security preferred
• Industry certifications (CSSLP, CASE, CEH, Security+, CISSP, GWEB, , CCNA Security or similar) preferred
• Scripting experience in PowerShell, Python or Perl preferred

Pulled from the full job description

• Tuition reimbursement
• 401(k)
• Health insurance
• Paid time off
• Vision insurance
• Dental insurance
• Gym membership, * We are empowered by our employee Co-Owners who provide the industry's best service, and we promote a collaborative culture.
• We offer an Employee Stock Ownership Plan, 401k, Paid Time Off, Medical, Prescription, Dental and Vision benefits as well as Gym Reimbursement, Work from Home Reimbursement, Employee Purchase Program, Tuition Assistance and much more!
• As a D&H Co-Owner you receive numerous discounts on services.
• We feel strongly about giving back to the community and promoting sustainable, eco-friendly business practices.

D&H is growing! Join 100+ year old Employee-Owned technology distributor, offering end-to-end solutions for today's resellers, retailers, and the clients they serve across the SMB and Consumer markets.