Cloud Security Advisor

3Ci's Client, a pioneering leader in providing clean energy solutions, is looking for an Application Security Engineer to join their team. As an Application Security Engineer, you will play a critical role in ensuring the security of our organization's software applications.

This position offers the opportunity to work remotely with occasional in-office days, collaborating with development teams to identify vulnerabilities and implement security controls throughout the software development lifecycle. With a commitment to innovation and sustainability, they offer a dynamic work environment where employees can grow their careers and contribute to meaningful changes in the energy sector.

Benefits Package

• Competitive salary with a 15% bonus opportunity based on performance

• Opportunity to contribute to securing critical infrastructure and protecting sensitive data

• Remote work with one day in the office on Wednesdays

Required Education and Experience

• 7+ years of experience in Information Technology, Information Security, Software Development, or Cybersecurity

• 4+ years of experience in Cybersecurity

• Experience in application security, including security assessments and code reviews

• Experience with web application firewalls, penetration testing tools, and vulnerability scanning tools

General Requirements

• Proficient knowledge of secure software development practices and common vulnerabilities

• Proficiency in programming/scripting languages such as JavaScript, Java, Python, PowerShell, Bash, and C#

• Excellent communication and collaboration skills

• Understanding of basic communications protocols and networking

Preferred Requirements

• Bachelor's degree or higher in Computer Science, Information Technology, or related field

• Relevant cybersecurity certifications

• Experience with cloud security principles and cloud platforms

• Experience with containers and container platforms

Essential Functions

• Perform security assessments of software applications to identify vulnerabilities and weaknesses

• Develop and implement security controls to mitigate risks and protect sensitive data

• Conduct code reviews to identify security flaws and recommend remediation strategies

• Integrate security best practices into the software development lifecycle

• Design and implement secure authentication, authorization, and encryption mechanisms

• Collaborate with multi-functional teams to define security requirements and ensure compliance with industry standards and regulations

• Provide security guidance and training to development teams on secure coding practices

• Investigate and respond to security incidents, including conducting forensic analysis and implementing corrective actions

• Stay informed about the latest cybersecurity threats, trends, and technologies

• Participate in security architecture reviews and provide recommendations for enhancing application and infrastructure security

• Perform other tasks as required

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.