Application Security Engineer - ControlUp Rishon Lezion Bookmark Share Print 147 0 1

Listing Description

ControlUp is the market leader in the IT platform for Monitoring, Self-healing and Analyzing customers’ virtual environments, creating solutions that save IT organizations time, money, and stress.We are looking for an Application Security Engineer to join our Cyber Security team.The Application Security Engineer will deal with the efforts to secure ControlUp products and infrastructure by guiding the R&D and Product teams and by performing code reviews and penetration tests.

What you will do:
  • Perform white-box application and infrastructure penetration tests
  • Perform Threat modeling, Design reviews and Code reviews
  • Work closely with development, devops and product teams to ensure vulnerabilities are avoided at an early stage.
  • Programming specially crafted tools and automations to hunt for vulnerabilities
  • Advice and answer questions to different “hacking” related questions.
  • Review and prioritize findings of code scanning tools (SAST, SCA etc.)
  • Answer on technical questions which raised by customers

    • What you will need:
  • 4+ years of experience in offensive application security
  • In-depth knowledge of web application vulnerabilities, their exploitation in the real world, and browser security mechanisms.
  • Proficient with writing and reading code (preferably in a product level - not scripts)  of at least one of the following - Nodejs, .NET, Python
  • Familiar with cloud and cloud native technologies and their attack surface (AWS, Azure, Kubernetes)

    • Advantages:
  • Information security certificates such as OSWE, OSCP
  • Experience with penetration testing of agent based desktop applications.
  • Experience with Red team activities (Cloud & Windows environment)
  • Published security research \ CVEs.

    • Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!