Senior Application Security Engineer responsible for ensuring secure development practices at Ventura Foods. Collaborating with engineering teams to enhance application security through various assessments.
Responsibilities
Manage and develop the application security program by developing the program, working with peers and stakeholders to adopt the program(s) and grow and manage the team as needed
Develop and implement a Threat Modeling program that drives a Secure by Design SDLC process while working to train and educate stakeholders
Identify, document, rate, and communicate vulnerabilities in terms of Confidentiality, Integrity and Availability
Undertake static and dynamic application security assessments for Ventura Foods Entities
Assess applications for vulnerabilities using manual and automated methods, threat modeling, code reviews, SAST/DAST/Open-Source tool scans, penetration testing
Develop, curate, and improve application security detections (static and dynamic) to identify vulnerabilities at scale
Facilitate conversations between developers and security teams to further the security of Ventura Foods software
Mentor and train developers on secure code best practice
Requirements
8 years of work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD)
3+ years of relevant application security experience
Deep understanding of OWASP Top 10 and CWE 25; with experience in implementing remediation strategies
Deep knowledge and experience in using SAST, DAST and Open-Source Vulnerability Scanning tools
Hands-On experience with any programming language (React, C#, JavaScript, Java, Go, Python, etc)
Well versed in web application design, penetration testing, application risk assessment and risk categorization
Well versed with driving and implementing DevSecOps practices in to develop ability to successfully integrate security into a developer's world
Ability to effectively present and communicate security threats and risks to ANY audience and impress upon them the mitigation techniques and strategies
Solid problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution
Benefits
Medical, Prescription, Dental, & Vision – coverage beginning on your 1st day for eligible employees
Profit Sharing and 401(k) matching (after eligible criteria is met)
Designer developing comprehensive application solutions for security systems at Johnson Controls. Collaborating on technical sales support and large - scale integrated electronic security systems.
Analyst role supporting Epic Security & Configuration at Acrisure, ensuring application functionality and troubleshooting issues. Collaborating with teams for configuration and security in Applied Epic systems.
Security Detection & Response Engineer for Flutter Entertainment developing security detection frameworks. Collaborating with global teams to enhance cybersecurity operations in complex, multi - cloud environments.
Specialist Software Design Verification Engineer in Cybersecurity at Solventum. Responsible for software verification, testing processes, and compliance with medical device regulations.
Lead defensive threat research on generative and agentic AI systems at RBC. Identify emerging threats and develop proof - of - concept exploits to enhance AI security.
Entry - level role in information security at Applied Materials, managing technologies and assisting in compliance with security standards. Contributing to the development of awareness and training.
Staff Software Engineer designing and implementing identity, authentication, and authorization for agentic AI ecosystems at Walmart. Leading secure architecture and engineering excellence for non - human identities.
IT Consultant specializing in Security Engineering, working on national and international IT Security projects. Responsible for identifying security vulnerabilities and assisting customers' Security Management.
IT Info Security Specialist managing ERIE's information security program to protect digital assets. Collaborating with various teams to enforce security measures and resolve identity access issues.
CISA Auditor Cyber Security at an international bank, planning and conducting IT audit examinations, focusing on cyber threats. Requires IT auditing experience and a Master in Information Systems or Engineering.