Application Security Engineer

What success looks like in this role:

Responsible for the identification, tracking, and management of enterprise risks in Unisys cloud environments. This includes performing risk assessments and measuring the success and effectiveness of mitigation efforts. Collaboration across business units and effective communication of cloud security policies and procedures will be critical. Candidates for this role should have a strong background in cloud management and understand networking between on-prem and cloud environments.

• Manage the onboarding of applications into Dynamic Application Security Testing (DAST) tools, ensuring thorough scanning and identifying vulnerabilities early in the SDLC.
• Good understanding of SCA, SAST tools like SonarQube, DependencyTrack or similar.
• Design and implement security dashboards for real-time visibility into vulnerabilities, threat intelligence, and risk metrics, providing actionable insights to development and security teams.
• Analyze, prioritize, and manage vulnerabilities identified in applications, networks, or infrastructure. Collaborate with cross-functional teams to ensure timely remediation and risk mitigation.
• Assists in analyzing new software requests from a security perspective, ensuring alignment with organizational security policies and best practices
• Implement and maintain a broad range of security technologies and processes to support the organization’s cloud-based applications, services, and infrastructure. Understand how to work with managed security services for the top cloud providers.
• Provide expertise and support to business teams regarding best practices for cloud security.
• Perform routine and targeted audits of cloud environments to identify security vulnerabilities and ensure compliance with regulatory requirements.
• Collaborate with cross-functional teams to conduct security risk assessments and incident response for cloud services.
• Evaluate proposed IT projects involving cloud services for potential security risks and compliance issues.
• Develop, maintain, and communicate cloud security policies and procedures.
• Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information systems (IS) and security policies, procedures, and systems, including access management for cloud environments and various applications
• Serves as an escalation point for technical issues around security tooling and the Unisys SOC team.

You will be successful in this role if you have:

Prior work experience should include:

• Bachelor’s Degree in Cybersecurity, Computer Science, Computer Engineering, Information Technology or similar, or the equivalent hands-on experience combined with training and certifications.
• Strong knowledge of cloud architectures, operations, and security controls. Must understand how automation can be implemented to streamline operations and controls.
• Familiarity with security issues associated with cloud environments, preferably with AWS or Azure.
• Strong understanding of regulatory compliance requirements related to cloud environments.
• Proficiency in security technologies such as SIEM, SOAR, and endpoint protection.
• Certifications in AWS or Azure, such as AWS Advanced Networking Specialty, AWS Security Specialty, Microsoft Azure Security Engineer Associate, Microsoft Azure Security Operations Analyst Associate, or Microsoft Azure Network Engineer Associate, are a plus.
• At least 5 years of experience between cloud engineering and security operations.
• Proven experience of handling cloud security incidents.
• Have conducted cloud security audits, compliance assessments, and creating recommendations for improving security posture.
• Engineering experience with cloud identity management systems, preferably with AWS IAM or Azure AD.
• Handling event streams in cloud platforms or workloads and have worked on automation that ingested or processed these events.
• Communicate effectively with developers, project teams, technical and business owners the security risks and remediation strategies appropriate for an application.
• Strong organizational skills and time management capabilities.

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.