Security Application Engineer
4 weeks ago
Security Application Engineer, DAST Scanning (Belmont CA, Denver CO, Dallas TX)
The RingCentral environment is dynamic, success-driven, team-oriented and committed to providing world class service for its customers. Do you have the ability to thrive in a fast-paced environment? We are looking for candidates with an entrepreneurial spark
We're not a phone company; we're a cloud business-solutions provider. We've thrown out the old PBX along with its rigid rules and eliminated the complexity and unnecessary expense of managing business communications the old way.
RingCentral fosters career development and provides leadership training, education, workshops, and coaching for all employees.
RingCentral promotes a healthy work-life balance by providing catered lunch and breakfast on a daily basis as well as a kitchen stocked with a variety of complimentary beverages and delicious snacks.
The RingCentral Application Security team is a part of a larger CISO team. The area of responsibility of the application security team includes enablement and support for RingCentral's Security Development Lifecycle (SDL) program. This includes development of infosec governance artifacts i.e., policies, standards and procedures for secure software development at RingCentral, leading security architecture reviews and threat modelings, developing security requirements, SAST/DAST/SCA testing and integration of these tools into the build and deploy process, penetration testing, managing bug bounty program.
We are looking for a Security Application Engineer with a strong understanding of web and mobile application vulnerabilities, how they can be detected, exploited and remediated.
Responsibilities:
Consult developers on questions related to reports of security scanners*, which includes:
⦁ explain why an issue should be considered as a vulnerability
⦁ explain circumstances under which an issue might be exploitable
⦁ provide suggestions on how an issue can be remediated
Review and validate issues marked as potential false positives by developers; request additional clarifications where required.
Review and improve security scanners configurations:
⦁ review scanning rules in presets, make sure that important rules are enabled and irrelevant rules are disabled
⦁ make sure security scanners do not miss production code/applications, as well as do not scan testing-only code/applications
⦁ where possible and required, adjust scanning rules to improve their accuracy
⦁ collaborate with legal to make sure that license violation rules for open source software are configured correctly
Maintain access to security scanners.
Report breached security defects SLA.
Support risk exceptions process for the following cases:
⦁ violations of security defects SLA
⦁ deviations from security policies/standards (for example, releasing with a higher vulnerability level than defined as satisfactory)
Triage reports from the bug bounty platform, address them to responsible engineering teams
Triage reports from the external attack surface management platform, address them to responsible engineering teams
Maintain security scanners deployed in production environment, which includes:
⦁ deploy new versions
⦁ patch security vulnerabilities
⦁ make sure security hardening benchmarks are met (such as CIS or STIG)
⦁ make sure other requirements for production deployment are met (logging, monitoring, backups, etc.)
* - security scanners include, but are not limited to static application security testing (SAST), dynamic application security testing (DAST) and software composition analysis (SCA)
Qualifications:
⦁ Technical experience in product architecture, design, implementation
⦁ Expertise with product security design, review, implementation including threat modeling and risk assessment implications
⦁ U.S citizenship required
⦁ Extensive experience with web and mobile application testing- SAST/DAST, penetration testing
⦁ Secure design and implementation capabilities
⦁ Experience with open-source software including lifecycle management, vulnerability management tools
⦁ Excellent communication skills, both verbal and written; ability to condense complicated scenarios into simple, risk-based assessments, appropriately targeted for colleagues and upper management
⦁ Outstanding organizational and time management skills, desire to work within a highly collaborative team
Nice-To-Have:
⦁ Any WebRTC, Video and audio streaming
⦁ Video codecs
⦁ B.S. or equivalent in CS or EE
What we offer:
RingCentral offers all the work/life benefits you could ever want, (and none of the micromanagement.)
⦁ Comprehensive medical, dental, vision, disability, life insurance
⦁ Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter Benefits
⦁ 401K match and ESPP
⦁ Flexible PTO
⦁ Wellness programs including1:1 wellness coaching through TaskHuman and meditation guidance through Headspace
⦁ Paid parental leave and new parent gift boxes
⦁ Pet insurance
⦁ Employee Assistance Program (EAP) with counseling sessions available 24/7
⦁ Rocket Lawyer services that provide legal advice, document creation and estate planning
⦁ Employee bonus referral program
RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success.
About RingCentral:
RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone™ (MVP™) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral® empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location.
RingCentral is headquartered in Belmont, California, and has offices around the world. If you are hired in Colorado, the compensation range for this position is between $120,000 and $150,000. If you are hired in Belmont, the compensation range for this position is between $140,000 and $170,000.
RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We are committed to providing reasonable accommodations for individuals with disabilities during our application and interview process. If you require such accommodations, please click on the following link to learn more about how we can assist you.
-
Application security Engineer
2 weeks ago
Dallas, United States Diverse Lynx Full timeTitle : Application security Engineer Location: Tampa/Dallas/NJ Type: Permanent/Fulltime JD: Application Security Engineer is someone who is responsible for ensuring the security of the company's networks, data and applications. Application Security Engineer ensures that applications and services of an organization are secured and implemented with best...
-
Application Security Engineer
1 month ago
Dallas, Texas, United States Motion Recruitment Full timeJob Title: Application Security Engineer Location: Remote - Must live in Texas A renowned institution of higher education in the state of Texas, dedicated to academic excellence, research, and innovation. We provide a vibrant and inclusive environment that fosters learning, growth, and collaboration. As part of our commitment to maintaining a secure digital...
-
Application Security Engineer
2 weeks ago
Dallas, United States Motion Recruitment Partners, LLC Full timeJob Title: Application Security Engineer Location: Remote - Must live in Texas A renowned institution of higher education in the state of Texas, dedicated to academic excellence, research, and innovation. We provide a vibrant and inclusive environment that fosters learning, growth, and collaboration. As part of our commitment to maintaining a secure digital...
-
Application Security Engineer
1 month ago
Dallas, United States Motion Recruitment Full timeJob Title: Application Security Engineer Location: Remote - Must live in Texas A renowned institution of higher education in the state of Texas, dedicated to academic excellence, research, and innovation. We provide a vibrant and inclusive environment that fosters learning, growth, and collaboration. As part of our commitment to maintaining a secure digital...
-
Sr. Engineer, Application Security
1 week ago
Dallas, United States OpenGov Full timeOpenGov is home to an exceptional team - passionate about our mission to power more effective and accountable government. By bringing the OpenGov Cloud to our nation's state and local government, we're transforming communities so they can thrive! Imagine yourself being able to help small business owners open their doors faster, ensuring our tax dollars are...
-
Application Security Engineer
6 days ago
Dallas, United States ARCHE Full timeApplication Security Engineer #5037-1 ESSENTIAL DUTIES AND RESPONSIBILITIES: Be a broker of security, being able to understand the benefits of security, while being mindful of the needs of development teams all over the world. Assist our development teams with onboarding, and ongoing configuration needs for the DevSecOps suite of services. Provide initial...
-
Senior Application Security Engineer
1 week ago
Dallas, United States ITAC Solutions Full timeITAC Solutions is helping a client in their search for a Senior Application Security Engineer! In this role, you will play a vital part in overseeing the enterprise security architecture, maintaining the client’s information security strategy, policies and procedures, and reviewing projects for security risks. C2C is not an option with this job opening and...
-
Cybersecurity Application Security Engineer
7 days ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is searching for a talented team player to fill the open position of Cybersecurity Application Security Engineer in our Dallas, Texas headquarters.The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static,...
-
Cloud Security Application
2 weeks ago
Dallas, United States eTeam Full timeJob/Responsibility Profile : •Design and develop multi-tenant solutions for enabling cloud platform as service •Deploy and Operate multi-cloud security solutions/platforms at Enterprise scale •Develop end-to-end technical solutions in security space •Develop self-service solutions to onboard customers and manage users on the platforms •ssess the...
-
Application Security Manager
7 days ago
Dallas, Texas, United States TEKsystems Full timeThe client is looking for someone with lead or managerial experience that is reliable. Must have app security experience.This individual will be expected to perform integration with the SDLC, working alongside with various stakeholders such as AppSec team, IAM team, App Developers, Third Party vendors, Managed Services Partners to devise a right operational...
-
Multi-Cloud Security Application
2 weeks ago
Dallas, United States Sidram Technologies LLC Full timeRole: Cloud Security Application Onsite Location: Dallas, Tx, Experience: 12yrs Client: T Mobile Job/Responsibility Profile: • Design and develop multi-tenant solutions for enabling cloud platform as service • Deploy and operate multi-cloud security solutions/platforms at Enterprise scale • Develop end-to-end technical solutions in security...
-
Multi-Cloud Security Application
2 weeks ago
dallas, United States Sidram Technologies LLC Full timeRole: Cloud Security Application Onsite Location: Dallas, Tx, Experience: 12yrs Client: T Mobile Job/Responsibility Profile: • Design and develop multi-tenant solutions for enabling cloud platform as service • Deploy and operate multi-cloud security solutions/platforms at Enterprise scale • Develop end-to-end technical solutions in security...
-
Cloud Security Application
2 weeks ago
Dallas, United States eTeam Full timeJob/Responsibility Profile : • OS Automation, OS Scripting, Patching Automation (Linux and Windows servers) in the cloud at scale. • Configure and manage cloud security tools such as encryption, identity and access management, logging, and auditing. • nalyze and investigate security alerts and incidents using SIEM/SOAR platforms, investigate and...
-
Applications Engineer
7 days ago
Dallas, United States Optical Cable Full timeBasic Function: The Applications Engineer will handle customer problems and applications support from a technical and engineering perspective. Determine the proper cable for various installation environments required/presented by the customer. Troubleshoot and conduct analysis of problems of apparently defective cables, termination, and splicing...
-
Multi-Cloud Security Application
2 weeks ago
Dallas, TX, United States Sidram Technologies LLC Full timeRole: Cloud Security Application Onsite Location: Dallas, Tx, Experience: 12yrs Client: T Mobile Job/Responsibility Profile: Design and develop multi-tenant solutions for enabling cloud platform as service Deploy and operate multi-cloud security solutions/platforms at Enterprise scale Develop end-to-end technical solutions in security space ...
-
Multi-Cloud Security Application
2 weeks ago
Dallas, TX, United States Sidram Technologies LLC Full timeRole: Cloud Security Application Onsite Location: Dallas, Tx, Experience: 12yrs Client: T Mobile Job/Responsibility Profile: Design and develop multi-tenant solutions for enabling cloud platform as serviceDeploy and operate multi-cloud security solutions/platforms at Enterprise scaleDevelop end-to-end technical solutions in security spaceDevelop...
-
System Security Engineer
3 weeks ago
Dallas, United States Uvation Full timeAbout the System Security Engineer position We are looking for an experienced System Security Engineer to help us ensure proper level of security of corporate digital systems and network. Your duties will include protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data. You should...
-
Software Applications Engineer
7 days ago
Dallas, United States Analog Devices Full timeAnalog Devices, Inc. (NASDAQ: ADI) is a global semiconductor leader that bridges the physical and digital worlds to enable breakthroughs at the Intelligent Edge. ADI combines analog, digital, and software technologies into solutions that help drive advancements in digitized factories, mobility, and digital healthcare, combat climate change, and reliably...
-
Application Engineer
7 days ago
Dallas, Texas, United States Danfoss USA Full timeApplication Engineer - HVAC/R (Remote)Requisition ID: 38521Job Location(s):Dallas, USBaltimore, MD, USMinneapolis, MN, USAtlanta, GA, US Job DescriptionThe Application Engineer position supports Danfoss Climate Solutions in North America with a focus on air conditioning and refrigeration OEM sales by providing component and system expertise for overall...
-
Application Engineer
7 days ago
Dallas, Texas, United States Danfoss USA Full timeApplication Engineer - HVAC/R (Remote)Requisition ID: 38521Job Location(s):Dallas, USAtlanta, GA, USMinneapolis, MN, USBaltimore, MD, US Job DescriptionThe Application Engineer position supports Danfoss Climate Solutions in North America with a focus on air conditioning and refrigeration OEM sales by providing component and system expertise for overall...
