|Job specification:||Posted by
Talent Acquisition Consultant en FICO®
FICO is seeking an Application Security Engineer to join our growing Information Security Office. This is a full-time regular position, and a great opportunity for an individual with strong web development skills or great interest in security that would like to move into the exciting field of application security.
Job Duties and Responsibilities:
Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the SDLC.
Perform hands on security testing of products and services to proactively discover risk and track them to resolution.
Perform validation of security controls to insure adherence with compliance and industry best practices.
Understand, balance and communicate business risk with security risk.
Ability to understand business requirements and apply security without adversely affecting the desired functionality.
Be the SME for Application security process and help AppSec team members to complete the tasks assigned to them.
Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
Experience with multiple languages such as Java, C++, PHP, etc. and understand how to detect and remedy related security issues such as OWASP top 10.
Ability to scale security within the SDLC by automation using tools sets such as source code analyzers, vulnerability scanners, configuration validation, and similar techniques.
Solid foundation in application security.
Engineering Information Technology