Join a Fortune 500 company working on critical infrastructure! You will be responsible for ensuring the security of our organization's software applications. You will work closely with development teams to identify and remediate security vulnerabilities throughout the software development lifecycle. Your role will involve conducting security assessments, implementing security controls, and providing guidance on secure coding practices. Additionally, you will collaborate with multi-functional tea... more details
Join a Fortune 500 company working on critical infrastructure! You will be responsible for ensuring the security of our organization's software applications. You will work closely with development teams to identify and remediate security vulnerabilities throughout the software development lifecycle. Your role will involve conducting security assessments, implementing security controls, and providing guidance on secure coding practices. Additionally, you will collaborate with multi-functional teams to enhance the overall security posture of our applications and mitigate potential risks. As a Cybersecurity Advisor –Application Security Engineering, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future? A day in the life - Get ready to think big, work smart and shine bright!
Perform security assessments of software applications to identify vulnerabilities and weaknesses.
Develop and implement security controls to mitigate risks and protect sensitive data.
Conduct code reviews to identify security flaws and recommend remediation strategies.
Work closely with development teams to integrate security best practices into the software development lifecycle.
Design and implement secure authentication, authorization, and encryption mechanisms.
Collaborate with multi-functional teams to define security requirements and ensure compliance with industry standards and regulations.
Provide security guidance and training to development teams on secure coding practices and techniques.
Investigate and respond to security incidents, including conducting forensic analysis and implementing corrective actions.
Stay informed about the latest cybersecurity threats, trends, and technologies to continuously improve security measures.
Participate in security architecture reviews and provide recommendations for enhancing the security of applications and infrastructure.
QualificationsThe essentials
Seven (7) or more years of experience in Information Technology, Information Security, Software Development, or Cybersecurity.
Four (4) or more years of experience in Cybersecurity.
Experience in application security, including conducting security assessments, code reviews, and implementing security controls.
Experience and solid understanding of secure software development practices, including knowledge of common vulnerabilities such as OWASP Top 10, Verification frameworks such as OWASP ASVS, and Software maturity models such as OWASP SAMM
Experience with web application firewalls, penetration testing tools, vulnerability scanning tools, application analysis tools (SCA, SAST, DAST), and threat assessment tools.
Experience and proficiency in programming/scripting languages such as JavaScript, Java, Python, PowerShell, Bash and C#, with the ability to analyze and debug code for security issues.
Superb communication and collaboration skills, with the ability to work effectively with multi-functional teams.
Strong analytical and problem-solving abilities, with a keen attention to detail.
The preferred
Bachelor's degree or higher in Computer Science, Information Technology, or related field.
Professional certifications such as: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), Certified Secure Software Lifecycle Professional (CSSLP), Certified Application Security Engineer (CASE), Certified Application Security Professional (CASP+), Offensive Security Certified Professional (OSCP), Certified Web Application Defender (GWEB) and/or any other relevant certifications.
Experience with secure coding standards such as CWE/SANS Top 25.
Experience and working knowledge of cloud security principles and cloud platforms such as AWS, Azure, and GCP.
Strong understanding of basic communications protocols and networking
Experience and working knowledge of containers and container platforms
You should know
This position’s work mode is hybrid.
Relocation does not apply to this position.
The primary work location for this position is San Gabriel, CA however, the successful candidate may also be asked to work for a period out in the field throughout the service territory.
Position may require up to 5 - 10% traveling between alternate work location sites.
This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
Candidates for this position must be legally authorized to work directly as employees for any employer in the United States without visa sponsorship.
US Citizenship required as part of Critical Infrastructure security protocols.
Job Abstracts is an independent Job Search Engine. Job Abstracts is not an agent or representative and is not endorsed, sponsored or affiliated with any employer. Job Abstracts uses proprietary technology to keep the availability and accuracy of its job listings and their details. All trademarks, service marks, logos, domain names, and job descriptions are the property of their respective holder. Job Abstracts does not have its members apply for a job on the jobabstracts.com website. Additionally, Job Abstracts may provide a list of third-party job listings that may not be affiliated with any employer. Please make sure you understand and agree to the website's Terms & Conditions and Privacy Policies you are applying on as they may differ from ours and are not in our control.
We would like to take a second to Welcome You to Job Abstracts, the nation’s largest Pure Job Board. With over 3.1 million job listings from 15,000+ Companies & Organizations, we help job searchers find careers that match their interests. As an anonymous user, you have probably discovered how easy our system is to use. However, you have just scratched the surface of what we can offer.
We encourage you to Register so you can use our most powerful features: searching with multiple terms, setting up multiple locations, establishing favorite companies, and accessing your search history. If you find a job you like, you can apply directly for it, and then, keep notes on it. We will also keep a lookout for jobs that match your search terms and email you when we find something you may like.
You can register for free and the system is free to use. If you like our system so far, click on Register and unlock the power required by serious job searchers.
Any time you conduct a search, the system shows you job matches, ranked by their Relevance Score (RS).
The score is calculated by a proprietary algorithm that uses Intelligent Machine Learning.
The Relevance Score tells you how well the job opportunity matches your search term or terms.
When not logged in, the system is limited to one search term. Scores for single term matches are usually lower.
When you register, log in, and set up multiple terms prioritized by importance, the jobs found for you will receive a much higher Relevance Score.