Application Security Engineer
Manchester
Applications have closed
Matillion
Matillion helps teams get data business-ready, faster. Thousands of enterprises trust us to load, transform, sync, and orchestrate their data in the cloud.
We are now looking for an Application Security Engineer to join #teamgreen.
Role Purpose As an Application Security Engineer, you will take on ownership of application security projects with opportunities across various tech stacks; strive to discover gaps and enable secure designs and mitigations. You will also be responsible for automating and scaling out the way application security is conducted across the Matillion. The role is not limited to merely identifying and fixing security vulnerabilities. You will play a key role in proactively identifying potential security risks, developing mitigation strategies, and ensuring that security measures are incorporated right from the beginning of the application development process.
Role Purpose As an Application Security Engineer, you will take on ownership of application security projects with opportunities across various tech stacks; strive to discover gaps and enable secure designs and mitigations. You will also be responsible for automating and scaling out the way application security is conducted across the Matillion. The role is not limited to merely identifying and fixing security vulnerabilities. You will play a key role in proactively identifying potential security risks, developing mitigation strategies, and ensuring that security measures are incorporated right from the beginning of the application development process.
What you will be doing
- Facilitate security assessments, remediations and drive product development forward
- Direct and assist product security guidance and processes
- Define how we establish, grow, and expand our partnerships with the Matillion product engineering organisation
- Contribute to the ramp-up of Trust-by-Design security work as well as security awareness amongst developers
- Conduct Bug Bounty issue evaluation, reproduction, and recommendations
- Help develop and deliver Security Education and Training and shepherd the security champions program
- Plan and perform penetration testing
- Write secure libraries or code patches where appropriate - especially scale secure code practices or prototype examples
- Build and maintain CI/CD secure tooling and support other security tools as well as automate tools and processes
- Test application code with the OWASP Testing Methodology
- Design and implement robust and secure systems
- Take part in Incident Response activities
What we are looking for - Essential
- Experience in threat modelling and secure development lifecycle activities
- Knowledge of product security tools and fine tuning and prioritisation of security issues
- Knowledge of AWS cloud environment and various development tools
- Experienced in deploying security best practices at scale
- Stay on top of advances in application security and translate that knowledge to preventing and finding vulnerabilities in Matillion’s systems and code and, if necessary, write proof-of-concept exploits
- Help teams integrate security throughout the development lifecycle in a non-blocking way
- Familiarity with large scale distributed systems
Personal Capabilities
- Strong team player with effective communication skills in terms of explaining complex security issues to a wide range of audiences
- A collaborative teammate who enjoys working with highly technical development team
- Have experience with security principles and adept at translating value to the organisation
- Prioritise making changes that have a long-term impact, as opposed to focusing on short-term wins
- Align with Matillion’s culture and values and embody that on a day to day basis
- Mindset of enabling our development teams to move fast while staying secure and allowing the company to choose the risks it wants to take
- Know when it’s necessary to act fast, as well as when to step back and look at the bigger picture in a more analytical fashion
Job stats:
6
2
0
Categories:
AppSec Jobs
Security Engineering Jobs
Tags: Application security AWS CI/CD Cloud Exploits Incident response OWASP Pentesting Product security Security assessment Vulnerabilities
Perks/benefits: Career development Competitive pay
Region:
Europe
Country:
United Kingdom
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cybersecurity Engineer jobsInformation Security Officer jobsSenior Cloud Security Engineer jobsInformation System Security Officer jobsInformation Security Manager jobsInformation Security Specialist jobsCyber Security Specialist jobsSecurity Consultant jobsIT Security Engineer jobsSenior Network Security Engineer jobsSenior Information Security Analyst jobsSystems Engineer jobsSecurity Specialist jobsSystems Administrator jobsIT Security Analyst jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsSenior Penetration Tester jobsInformation System Security Officer (ISSO) jobsStaff Security Engineer jobsCyber Security Architect jobsSenior Product Security Engineer jobsInformation Systems Security Engineer jobsThreat Intelligence Analyst jobsSecurity Operations Analyst jobs
APIs jobsEncryption jobsForensics jobsTop Secret jobsEDR jobsSaaS jobsGDPR jobsRMF jobsIDS jobsSplunk jobsSDLC jobsIPS jobsSQL jobsActive Directory jobsBash jobsDoDD 8570 jobsIntrusion detection jobsThreat detection jobsITIL jobsCompTIA jobsFinance jobsGIAC jobsOWASP jobsDocker jobsCRISC jobs
UNIX jobsSANS jobsClearance Required jobsIndustrial jobsTCP/IP jobsTerraform jobsOSCP jobsHIPAA jobsJavaScript jobsCCSP jobsIT infrastructure jobsBanking jobsData Analytics jobsDNS jobsVPN jobsSOC 2 jobsCISO jobsNIST 800-53 jobsSAP jobsPolygraph jobsSOX jobsGCIH jobsMITRE ATT&CK jobsAnsible jobsGSEC jobs