Application Security Engineer

Position Summary:  IDT is looking for an Application Security Engineer who will be instrumental in identifying, assessing, and mitigating security risks associated with new software development projects. Working closely with development teams, you'll ensure that security is seamlessly integrated into every stage of the development process. Your proactive approach will be pivotal in addressing potential risks associated with new software development projects.

Key Responsibilities:

1. Risk Assessment for New Development:

• Conduct comprehensive risk assessments for new software development initiatives, identifying potential vulnerabilities and threats.
• Collaborate with development teams to integrate security measures into the early stages of the software development lifecycle.

1. Security Requirements Analysis:

• Work closely with project stakeholders to define and document security requirements for new development projects.
• Assist in the creation and review of security architecture and design for new applications.

1. Security Testing and Validation:

• Develop and implement security testing methodologies for new development projects.
• Collaborate with Quality Assurance teams to ensure security testing is integrated into the testing process.

1. Security Consultation:

• Provide expert guidance to development teams on security best practices, ensuring that security considerations are taken into account during coding and implementation.

1. Incident Response and Mitigation:

• Participate in incident response activities related to new development, including investigation and resolution of security incidents.
• Develop and implement strategies for mitigating identified risks.

1. Documentation and Reporting:

• Document and communicate risk assessment findings, security requirements, and mitigation strategies.
• Prepare and present reports to stakeholders, summarizing the security posture of new development projects.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Proven experience in information security, with a focus on risk assessment for new software development.
• Strong understanding of secure software development practices and methodologies.
• Relevant certifications such as CISSP, CISM, or a specialized risk management certification is highly desirable.
• Excellent communication and collaboration skills.
• Familiarity with industry regulations and emerging trends in information security.