![TrinityRail](https://media.trabajo.org/img/noimg.jpg)
Cybersecurity Application Security Engineer
3 weeks ago
The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static, dynamic, and interactive application security testing, code genealogy reviews, evaluation of container, Infrastructure as code, orchestration/automation, and application integrations to ensure implementations adhere to documented cybersecurity policies, standards, requirements, and processes.
The Cybersecurity Application Development Engineer will act as trusted advisor to internal and external stakeholders to promote secure software development practices. The successful candidate will work with IT and business partners to provide cybersecurity guidance, best practice, implementation requirements, and analysis of applications, source code, and services delivery to identify risk and recommend mitigations relating to the software development lifecycle.
This individual will deliver recommendations for policy, processes, and standards relating to the secure delivery of applications and services. This role requires deep technical knowledge in establishing a secure software development lifecycle (SSDLC), including application architecture, programming languages, CI/CD pipeline, and industries best practices related to secure software development.
The successful candidate will collaborate with development teams to assist with the delivery of secure solutions to support business strategies while protecting Trinity Industries, Inc.' s intellectual property, networks, partnerships, customers, and services.
- What you'll do:
- Provide guidance and support to IT and business partners in implementing secure coding practices and integrating security into the development lifecycle.
- Collaborate with development teams to perform static, dynamic, and interactive application testing and secure source code, genealogy, and Software Bill of Materials reviews of proprietary applications including but not limited to web, mobile, and web service applications to identify vulnerabilities. Code reviews and software composition analysis may involve manual testing and analysis as well as use of automated application vulnerability scanning/testing tools.
- Lead the development, evaluation and implementation of vulnerability management tools and process to support static, dynamic, and interactive application security testing as well as code genealogy, secure container, and Infrastructure as code analysis.
- Provide strategic direction for application security and vulnerability management programs across the enterprise.
- Provide recommendations on Information Security policies, standards, processes, and defining governance procedures for secure application development.
- Develop, enhance, and provide input into development of KPI, KRI and other metrics related to software vulnerability management.
- Research and keep up to date with the latest security trends, vulnerabilities, and industry best practices, and ensure their integration into company software development processes.
Qualifications
What you'll need:
- 3+ years of professional experience focused on Application Security.
- 5+ years of professional experience in Application Development roles.
- Experience with security concepts and tooling such as: SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), and Web Application Penetration Testing.
- Hands-on experience in application secure source code review, software composition analysis, opensource library and artifact vulnerability management.
- History of securing complex applications, preferably in a manufacturing setting.
- Experience with multiple objected oriented coding programming languages, application architectures, and front-end frameworks.
- Willingness to participate in Agile/Scrum development process.
- Strong communication and technical skills with the ability to communicate between business and technical stakeholders.
- Experience with securing public cloud platform services such as AWS, Azure, Google.
- Experience with secure CI/CD pipeline design and architecture, automation, and secure code gating.
- CISSP, CCSP, CSSLP, or other relevant certifications
- Experiencing supporting global organizations in the manufacturing industry.
- Ability to adapt to a dynamic environment
- Fluent in English and Spanish
-
Cybersecurity Application Security Engineer
1 week ago
Dallas, United States CareerBuilder Full timeTrinity Industries is searching for a talented team player to fill the open position of Cybersecurity Application Security Engineer in our Dallas, Texas headquarters. The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static,...
-
Cybersecurity Application Security Engineer
2 weeks ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is searching for a talented team player to fill the open position of Cybersecurity Application Security Engineer in our Dallas, Texas headquarters.The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static,...
-
Cybersecurity Application Security Engineer
4 weeks ago
Dallas, United States Trinity Industries, Inc. Full timeTrinity Industries is searching for a talented team player to fill the open position of Cybersecurity Application Security Engineer in our Dallas, Texas headquarters.The Application Security Engineer works within the Information Risk Management team and is a subject matter expert for the development, selection, and implementation of tools to support static,...
-
Security Sales Engineer
1 week ago
Dallas, United States Cybersecurity company Full timeJob DescriptionJob DescriptionSecurity Sales EngineerOur customer is looking to hire a Security Sales Engineer to help sell to Enterprise and SLED customers in Texas and Southeast region. Summary:The role of the Security Sales Engineer is to assist the Sales team in reaching the revenue goal by providing quality pre-sales technical support and presentations...
-
Cybersecurity Engineer
2 weeks ago
Dallas, United States Spectral MD Inc Full timeJob DescriptionJob DescriptionPosition Summary: Spectral MD, Inc. is seeking a cybersecurity engineer to join our growing team in Dallas, TX. The cybersecurity engineer should have experience in analyzing, identifying, and measuring the security related threats and vulnerabilities for the protection of data, software application systems and device network...
-
Cybersecurity Engineer
4 weeks ago
Dallas, United States Spectral MD Inc Full timeJob DescriptionJob DescriptionPosition Summary: Spectral MD, Inc. is seeking a cybersecurity engineer to join our growing team in Dallas, TX. The cybersecurity engineer should have experience in analyzing, identifying, and measuring the security related threats and vulnerabilities for the protection of data, software application systems and device network...
-
Cybersecurity Engineer
2 days ago
Dallas, United States Spectral MD Inc Full timeJob DescriptionJob DescriptionPosition Summary: Spectral MD, Inc. is seeking a cybersecurity engineer to join our growing team in Dallas, TX. The cybersecurity engineer should have experience in analyzing, identifying, and measuring the security related threats and vulnerabilities for the protection of data, software application systems and device network...
-
Cybersecurity Engineer
2 days ago
Dallas, Texas, United States General Motors Financial Company, Inc. Full timeThe Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting, and maintaining systems and procedures; and to identify and mitigate threats to the corporate network, corporate assets and corporate user Security Engineer, Cybersecurity, Security, Engineer, Network, Systems, Technology
-
Engineer, Aviation Cybersecurity
4 weeks ago
Dallas, United States TEKsystems Full timeEngineer, Aviation Security 12 months (potential to extend/convert) Hybrid 3 days on site Top 3-5 skills: • 5 years of experience supporting cybersecurity technologies • 5 years of network, server, and application systems engineering experience • 4 + years’ experience in NIST 800 series frameworks • Experience managing the lifecycle of...
-
Engineer, Aviation Cybersecurity
3 weeks ago
Dallas, United States TEKsystems Part timeEngineer, Aviation Security12 months (potential to extend/convert)Hybrid 3 days on site Top 3-5 skills:• 5 years of experience supporting cybersecurity technologies• 5 years of network, server, and application systems engineering experience• 4 + years’ experience in NIST 800 series frameworks• Experience managing the lifecycle of digital...
-
Engineer, Aviation Cybersecurity
2 weeks ago
Dallas, United States TEKsystems Full timeEngineer, Aviation Security 12 months (potential to extend/convert) Hybrid 3 days on site Top 3-5 skills: • 5 years of experience supporting cybersecurity technologies • 5 years of network, server, and application systems engineering experience • 4 + years’ experience in NIST 800 series frameworks • Experience managing the lifecycle of...
-
Engineer, Aviation Cybersecurity
3 weeks ago
Dallas, Texas, United States TEKsystems Full timeEngineer, Aviation Security12 months (potential to extend/convert)Hybrid 3 days on site Top 3-5 skills:• 5 years of experience supporting cybersecurity technologies• 5 years of network, server, and application systems engineering experience• 4 + years' experience in NIST 800 series frameworks• Experience managing the lifecycle of digital certificates...
-
Engineer, Aviation Cybersecurity
2 weeks ago
Dallas, United States TEKsystems Part timeEngineer, Aviation Security12 months (potential to extend/convert)Hybrid 3 days on site Top 3-5 skills:• 5 years of experience supporting cybersecurity technologies• 5 years of network, server, and application systems engineering experience• 4 + years’ experience in NIST 800 series frameworks• Experience managing the lifecycle of digital...
-
Engineer, Aviation Cybersecurity
2 weeks ago
Dallas, Texas, United States TEKsystems Full timeEngineer, Aviation Security12 months (potential to extend/convert)Hybrid 3 days on site Top 3-5 skills:• 5 years of experience supporting cybersecurity technologies• 5 years of network, server, and application systems engineering experience• 4 + years' experience in NIST 800 series frameworks• Experience managing the lifecycle of digital certificates...
-
Engineer, Cybersecurity
2 weeks ago
Dallas, United States CECO Environmental Full timeJob DescriptionJob DescriptionJOB SUMMARY: The Cybersecurity Engineer is responsible for the execution of the Cybersecurity and IAM strategy, identifying and mitigating cyber threats to the Company. Responsible for designing, documenting, implementing, and maintaining cybersecurity systems and processes. This role will also ensure that CECO users, devices,...
-
Engineer, Cybersecurity
2 days ago
Dallas, United States CECO Environmental Full timeJob DescriptionJob DescriptionJOB SUMMARY: The Cybersecurity Engineer is responsible for the execution of the Cybersecurity and IAM strategy, identifying and mitigating cyber threats to the Company. Responsible for designing, documenting, implementing, and maintaining cybersecurity systems and processes. This role will also ensure that CECO users, devices,...
-
Imperva Cybersecurity Engineer
4 weeks ago
Dallas, United States Omni Inclusive Full timeImperva Cybersecurity Engineer will be part of a bright, talented, and independent team of Cybersecurity engineers. We are looking for a Team player, a Self-starter who needs Little direct supervision, delivers High-quality work, and demonstrates Strong critical thinking skills and Excellent communication skills. We are looking for a Lifelong learner,...
-
Sr Cybersecurity Engineer
4 weeks ago
Dallas, United States Southwest Airlines Full timeDepartment:Technology Our Company Promise We are committed to provide our Employees a stable work environment with equal opportunity for learning and personal growth. Creativity and innovation are encouraged for improving the effectiveness of Southwest Airlines. Above all, Employees will be provided the same concern, respect, and caring attitude within the...
-
Associate Cybersecurity Engineer
4 weeks ago
Dallas, United States Abacus Group Full timeJob Description Job Description Responsibilities(including but not limited to): Performing external and internal network vulnerability assessments, penetration tests, and social engineering engagements. Perform penetration testing of moderately complex web applications utilizing black box and white box techniques aligned to OWASP Web Security Top 10 and...
-
Sr Cybersecurity Engineer
2 days ago
Dallas, Texas, United States Southwest Airlines Full timeDepartment:Technology Our Company Promise We are committed to provide our Employees a stable work environment with equal opportunity for learning and personal growth. Creativity and innovation are encouraged for improving the effectiveness of Southwest Airlines. Above all, Employees will be provided the same concern, respect, and caring attitude within the...