Skills

Leadership Python Bash CI/CD Docker Kubernetes Ansible Networking Azure AWS GCP TCP/IP

Job Specifications

Application Security Engineer

Austin, Texas, United States

Description

The Application Security Engineer will be responsible for reviewing application security related controls and identifying gaps in our application security. You will help to protect our critical infrastructure and ensure the highest levels of security are in place. Qualified Application Security Engineers will have a security focused background in application development, cloud, and computer systems engineering or systems engineering and analysis.

Responsibilities

Works to address tasks and tickets related to security, networking, and infrastructure.
Involvement with complex projects around security and infrastructure operations.
Conduct application security scans for vulnerabilities and areas of concern.
Provides security scan result reports and recommended security gap enhancements to appropriate teams and leadership. Works with teams to resolve security issues.
Design, implement, support, and evaluate security-focused tools, services, and platforms.
Support for automation around security and infrastructure.
Evaluate and recommend new and emerging security products and technologies for application security.
Assists in defining security requirements and configurations of systems to ensure they comply with security policies.
Participate in security compliance efforts around SOC and NIST.
Help create technical documentation, manuals, and guidelines.
Assists in a variety of additional security efforts, such as on-call rotations, alerts and reporting reviews, and implementing general security practices.

Requirements

BS/MS degree in Computer Science, Engineering, or related experience.
Advanced familiarity with scripting and/or automation tools (bash, python, ansible, chef, etc.).
Intermediate experience around cloud environments (Azure, AWS, GCP).
Understands general networking functionality (OSI, TCP/IP).
Experience with code development and code scanning analysis.
Ability to troubleshoot and solve time sensitive problems.
Knowledge of application security and system security best practices.

Preferred

Experience with pentesting systems, services, and applications.
Familiarization with container-based environments (Docker, Podman, Kubernetes) and CI/CD deployment workflows.
Comfortable with APIs for various functions and enforcing best practices around security.
Participation with conferences and groups/organizations within the security community.

About the Company

Open Lending specializes in loan analytics, risk-based pricing, risk modeling and automated decision technology for automotive lenders throughout the United States. Open Lending’s flagship product, Lenders Protection™, is a unique auto lending enablement platform. It utilizes proprietary data and advanced decisioning analytics to provide lenders with a powerful way to increase near and non-prime auto loan volumes, without adding significant risk to their auto loan portfolio. Know more