Remote Application Security Engineer at New Context Services 📈 Open Startup
RSS
API
Post a Job

get a remote job
you can do anywhere

The largest collection of Remote Jobs for Digital Nomads online. Get a remote job you can do anywhere at Remote Companies like Buffer, Zapier and Automattic who embrace the future. There are 31,600+ jobs that allow you to work anywhere and live everywhere.

The largest collection of Remote Jobs for Digital Nomads online. Get a remote job you can do anywhere at Remote Companies like Buffer, Zapier and Automattic who embrace the future. There are 31,600+ jobs that allow you to work anywhere and live everywhere.

  Jobs

  People

👉 Hiring for a remote InfoSec position?

Post a Job - $299
on the 🏆 #1 remote jobs board

New Context Services

 

Application Security Engineer

Application Security Engineer  


New Context Services


infosec

engineer

infosec

engineer

11d
\nApplication Security Engineer\n\nNew Context is a rapidly growing consulting company in the heart of downtown San Francisco. We specialize in Lean Security: an approach that leads organizations to build better, safer software through hands-on technical and management consulting. We are a group of engineers who live and breathe Agile Infrastructure, Systems Automation, Cloud Orchestration, and Information & Application Security.\n\nAs a New Context Application Security Engineer, you will provide technical leadership with a hands-on approach. Our clients look to us to guide them to a solution that makes sense for them, and you should expect to provide thought leadership, design, and implement that solution. \n\nExpect to be involved in application security and vulnerability management using Open Source technologies as well as all aspects of security architecture, directives, and standards for application security. You will utilize our core methodologies - DevOps, Agile, Lean, TDD and Pair Programming - along with your expertise in application security - to provide advice and assistance to application teams. You will work with our clients and other New Context team members while working from the New Context office, at client sites, or from your home.\n\nWe foster a tight-knit, highly-supportive environment where you will receive respect and be included. Even if you may not know the answer to a question immediately, you'll have the entire company supporting you via Slack, Zoom, or in-person. We also host a daily, all-company stand-up via Zoom, and a weekly company Retro, so you won't just be a name on an email. \n\nAt New Context, our core values are Humility, Integrity, Quality & Passion! Our employees live these values every single day.\n\nWho you are:\n\n\n* A seasoned technologist with 5+ years work experience in cybersecurity, secure app development, or application security roles;\n\n* Happy and effective as a consultant in client-facing situations;\n\n* Knowledgeable about Lean Security or DevSecOps techniques and environments;\n\n* Experienced in Open Source web technologies, especially in the areas of highly-available, secure systems;\n\n* Experienced with cloud-native (AWS, Google Cloud, Azure) application implementations and the relevant security risks and mitigations. \n\n* Have worked in a team to create production-quality applications in an Agile environment;\n\n* Possess working knowledge of Unix-based operating systems and networking concepts, Windows and Microsoft Active Directory..\n\n* Comfortable with authentication and authorization functionalities and systems - identity federation (SAML, Oauth, OpenId), directory services (LDAP, AD), authenticating proxies;\n\n* Experienced as a technical lead;\n\n* An excellent communicator, experienced with external clients and customers and able to communicate productively with customers to explain technical aspects and project status;\n\n* Able to think on your feet and learn quickly on-the-job in order to meet the expectations of our clients;\n\n* A great teammate and a creative and independent thinker.\n\n\n\n\nBonus points if you are:\n\n\n* CISSP, CEH, CASE, GWEB, GWAPT, GSSP (or equivalent) certified.  \n\n* Experienced with Windows operating systems and Windows-based networking, e.g. Active Directory.\n\n* Familiar with network security fundamentals,, social engineering, and/or forensic analysis;\n\n* A believer in automated tests and their role in software engineering;\n\n* Familiar with Infrastructure as Code (IaC) and automated server provisioning technologies;\n\n* Able to translate complex concepts to business customers;\n\n* A member of national and/or local security groups.\n\n\n\n\nTechnology we use: We tailor solutions to our customers. You might work on projects using any of the following technologies (or other similar technologies):\n\n\n* Security: BurpSuite, ZAP Proxy, SAST/DAST Scanning Tools, Threat Modeling, Kali Linux, Standards & Compliance, Compliance standards, Application Security, Layer 7 Firewalls, OSSEC, Hashicorp Vault, STIX, TAXII;\n\n* Automation: Chef, Puppet, Docker, Ansible, Salt, Terraform, Automated Testing\n\n* Containerization Ecosystem: Docker, Mesosphere, Rancher, CoreOS, Kubernetes\n\n* Cloud & Virtualization: AWS, Google Compute Engine, OpenStack, Cloudstack, kvm, libvirt\n\n* Tools: Jenkins, Atlassian Suite, Pivotal Tracker, Vagrant, Git, Packer\n\n* Monitoring: SysDig, DataDog, AppDynamics, New Relic, Sentry, Nagios, Prometheus\n\n* Databases/Datastores: Cassandra, Hadoop, Redis, Postgres, MySQL\n\n* Languages: Ruby, Python, Go, Java, JavaScript\n\n\n\n\nWe are committed to equal-employment principles, and we recognize the value of committed employees who feel they are being treated in an equitable and professional manner. We are passionate about finding ways to attract, develop and retain the talent and unique viewpoints needed to meet business objectives, and to recruit and employ highly qualified individuals representing the diverse communities in which we live, because we believe that this diversity results in conversations which stimulate new and innovative ideas.\n\nEmployment policies and decisions on employment and promotion are based on merit, qualifications, performance, and business needs. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

See more jobs at New Context Services

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.