Application Security Engineer, remote

InCountry is helping companies meet the increasing complexity of data residency and data protection laws globally by enabling companies to quickly address data residency issues in a secure manner. The Trust and Security team at InCountry is focused on ensuring the appropriate internal controls are in place and operating effectively to mitigate risks to InCountry and its customers.

Maintain SDLC program Conduct penetration testing of application and infrastructure and work with teams to close all findings Perform threat models of all applications, risk rate all findings and work with teams to close all findings Develop, communicate and provide regular updates on application security roadmap

Required Skills

3-5 years in an application security role Prior experience developing threat models in alignment with industry standards (e.g. NIST, MS SDL, etc) Be a security subject matter expert and respond to any internal security engineering questions/request Correctly balance security risk and product advancement Perform penetration testing on our internal and external applications Perform proactive research to detect new attack vectors Prior experience integrating static & dynamic analysis in CI/CD pipeline Train our engineers on secure software engineering Excellent written and verbal communications skills SME in cryptography, authentication and security protocols Bachelor's degree in Computer Science or a related field

Preferences: Prior experience with GCP, AWS, Azure and GKE Has a deep understanding of web applications

Experience RequiredMid-Senior level

Conditions:

● Contract directly with an American company.

● Flexible schedule

To respond to a vacancy:

1. Link https://www.linkedin.com/in/zulfiiagasanova/

2. Telegram https://t.me/ZulfiaG