DevSecOps Engineer

Los Angeles, California

100% Remote

Full Time

$130k - $170k

The world’s leading technology vehicle auction house is seeking an Application Security Engineer to join their growing security team. This company is listed as one of the top performing S&P 500 companies by the Wall Street Journal. The ideal candidate is one with experience in SAST/DAST implementation, python scripting, SDLC, as well as code review. Applicants should have a passion for DevSecOps, discovering security issues and working with development teams to find vulnerabilities.

This position would be expected to act as a key role in assessing the security of applications, tooling and will establish strong partnerships with development teams. Candidates would primarily need a background in SAST/DAST in a CI/CD pipeline. Those with experience in automation scripting as well as having experience with several relevant security tools are preferred.

Required Skills & Experience
  • BS in Computer Science or equivalent required with minimum of 3 years of experience as a Security Analyst or Engineer
  • 2+ years of work experience in application security
  • 2+ years with secure code review, technical risk assessments, and/or static code analysis
  • 1+ years of Secure coding or automation experience
  • Conduct technical security assessments, code audits and architectural design reviews
  • Support SDLC and agile environments with application security testing
  • Experience with automation through solutions such as Chef, Puppet, Jenkins, and Ansible
  • Experience in Java, Python, JavaScript
  • Experience with application security tools such as Checkmarx, AppSpider and BurpSuite.
  • Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
  • Ability to automate DAST/SAST solutions and reporting
Desired Skills & Experience
  • Experience with containerization
  • Experience with threat modeling methodologies such as STRIDE
  • Some Pen-testing experience
  • Some cloud experience
  • OSCP certification is a plus
The Offer
  • Bonus OR Commission eligible

You will receive the following benefits:

  • Medical Insurance
  • Dental Benefits
  • Vision Benefits
  • Paid Time Off (PTO)
  • 401(k) {including match- if applicable}

Applicants must be currently authorized to work in the US on a full-time basis now and in the future.

Posted by: Alfie Merritt