About the Company:
Shaping the future for 134 years, our client is the world’s enterprise technology leader for restaurants, retailers and banks. The #1 global POS software provider for retail and hospitality, and the #1 provider of multi-vendor ATM software, they create software, hardware and services that run the enterprise from back office to the front end and everything in between for their clients.
Digital first but not digital only, they’re positioned to help clients bridge their digital and physical operations—helping them connect with consumers anytime, anywhere and streamline their business so they can differentiate, compete and win in our evolving digital world.
Headquartered in midtown Atlanta, Ga., the company has over 34,000 employees in 180 countries.
In this mission critical role as an Application Security Engineer, you will be part of a dynamic global application security team, working directly with software architects and software engineers to perform penetration testing on software solutions developed within the company. In addition, you’ll collaborate with engineering to triage security findings and review remediation techniques in order to harden and improve the security of software across multiple types of software.
You’ll work in a fast-paced environment, helping enable teams to work in a DevSecOps model in a world of containers, automated pipelines, and rapid deployments. And you’ll be instrumental in helping teams add in security testing as part of their build and release pipelines. We produces hardware and software for major companies in Retail, Hospitality, and Financial Services – come help secure the state-of-the-art!
Conducting manual penetration tests of software
Assessing risk level of security findings using common methodologies
Running automated application security tools
Writing and presenting pen test reports to development teams
Consulting with development teams on remediation techniques and defensive coding
Validation testing to confirm findings are closed
Develop, integrate, and enable security engineering test automation into a CI/CD pipeline
Perform proof-of-concept and proof-of-technology testing for integrating new 3rd party security products into the development and deployment processes
Required Skills and Experience:
Bachelor’s Degree in Computer Science or related field - equivalent work experience will be considered
Application pen testing background of 4 -7 years
Mobile application test experience (iOS and Android)
Web application test experience
Web services/API test experience
Soft skills - effective communication (internal, customer, legal counsel), collaboration (internal, external) and effective written skills (white papers, vulnerability specifications etc.)
Preferred Skills and Experience:
Experience with automation of security testing as part of a CI/CD pipeline
Experience with retail, financial, and/or hospitality software, particularly the types of vulnerabilities and security testing associated with them.
Previous hardware/POS pen test experience
Active participation in cybersecurity forums/conferences, e.g. DEFCON, Black Hat.
Experience with privacy requirements of a global corporation (e.g. GDPR, CCPA)