Application Security Engineer

Role: Application Security Engineer

Location: 100% Remote

Type: Contract

RESPONSIBILITIES:

• Perform internal penetration tests of bank networks enumerate networks, identify vulnerabilities misconfigurations, create reports based on findings, and deliver reports to stake-holders management.
• Perform external penetration tests of bank networks perform reconnaissance, enumerate intern et-facing client systems services, identify vulnerabilities misconfigurations, create reports based on findings, and deliver reports to stake-holders management.
• Responsible for creating and maintaining a vulnerability management program that will ensure the timely identification, reporting and remediation of operating system and application vulnerabilities.
• Perform application penetration tests of bank applications perform reconnaissance, enumerate internet-facing client application, identi fy vulnerabilities and misconfigurations, create reports based on findings, and deliver reports to stake-holders management
• Perform Breach and Attack Simulations.
• Administer testing platform and work with vendor to ensure proper configurations features are enabled and working as expected.
• Perform firewall reviews of bank firewalls other perimeter security devices, and create reports based on findings.
• Research and develop skills personally and share insights with the team.
• Align with security operations center (SOC) regarding external threats to the bank.
• Educate various teams on the threat actor tactics and techniques, and guide IT teams to improve security controls to mature our defense in depth security posture.
• Responsible for managing and developing a team of employees including training, development, performance management, administration, and workforce planning.
• Regular reporting of team and project activities to executive leadership.