Application Security Engineer at Cast & Crew

Burbank, California, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Entertainment, TechnologyIndustries

Requirements

Expertise in building and securing modern software development environments
Strong foundation in secure coding practices, threat modeling, and vulnerability management
Hands-on experience in automating security testing within CI/CD pipelines
Proficiency with tools like SAST, DAST, RASP, SCA for vulnerability identification and remediation
Experience with DevSecOps pipelines, infrastructure-as-code, and secure configurations for containerized and cloud-based environments
Skills in scripting, APIs, and automation workflows for security operations
Ability to conduct application security assessments, including code reviews, threat modeling, and penetration testing
Passion for tackling complex security challenges and implementing proactive solutions

Responsibilities

Conduct application security assessments, including code reviews, threat modeling, and penetration testing
Develop, maintain, and implement secure coding guidelines and best practices for development teams
Identify and remediate vulnerabilities in applications using tools like SAST, DAST, and RASP
Collaborate with development teams to ensure security is integrated into the design and architecture of new applications
Respond to and manage application-level security incidents
Design and implement DevSecOps pipelines to automate security testing (e.g., SCA, SAST, DAST) in CI/CD workflows
Advocate for “security as code” by integrating security controls into infrastructure-as-code and deployment scripts
Work with DevOps teams to ensure secure configurations of containerized and cloud-based environments
Continuously evaluate and improve DevSecOps tools and processes to reduce friction and optimize developer productivity
Develop and implement scripts, APIs, and automation workflows to improve security operations and reduce manual effort
Automate vulnerability management, patching, and reporting processes
Monitor and enhance security tools through custom scripting or integrations with other platforms
Build automated security metrics dashboards to track risk and compliance
Partner with cross-functional teams to foster a culture of security awareness and shared responsibility
Provide training and mentoring to developers and engineers on secure coding practices and security tools

Skills

Key technologies and capabilities for this role

Application SecurityDevSecOpsAutomationSDLCCI/CDSecure CodingThreat ModelingVulnerability ManagementSecurity Testing

Questions & Answers

Common questions about this position

What are the main responsibilities of this Application Security Engineer role?

The role involves conducting application security assessments like code reviews, threat modeling, and penetration testing; developing secure coding guidelines; integrating security into DevSecOps pipelines; and managing vulnerabilities and incidents.

What skills and expertise are required for this position?

Expertise in application security, DevSecOps, automation, secure coding practices, threat modeling, vulnerability management, and automating security testing in CI/CD pipelines is required.

Is this a remote position or does it require office work?

This information is not specified in the job description.

What is the salary or compensation for this role?

This information is not specified in the job description.

What kind of company culture can I expect at Cast & Crew?

The company emphasizes empowering creativity in the entertainment industry, operating as a collaborative family of brands with a focus on innovative technology, expertise, and teamwork under the motto #OneCastOneCrew.

Cast & Crew

Digital solutions for entertainment production management

About Cast & Crew

Cast & Crew provides a range of digital solutions tailored for the entertainment industry, focusing on production management for film, television, and live events. Their tools help streamline administrative tasks such as payroll, human resources, and production management, making it easier for production companies, studios, and independent filmmakers to operate efficiently. The company's offerings include payroll management tools, purchase order management, screenwriting software, and digital onboarding solutions, all designed to simplify complex processes. Unlike many competitors, Cast & Crew emphasizes a comprehensive suite of services that integrate various aspects of production management, ensuring accurate and timely payments, efficient document handling, and insightful data reporting. The goal of Cast & Crew is to enhance the operational efficiency of entertainment productions while supporting the industry, including initiatives for the Canadian entertainment sector.

Burbank, CaliforniaHeadquarters

1976Year Founded

ACQUISITIONCompany Stage

Data & Analytics, Enterprise Software, EntertainmentIndustries

1,001-5,000Employees

Benefits

PTO

Family-leave time off

401(K)

Hybrid & remote work flexibility

Health, dental, & vision insurance

Employee referral program

Tuition reimbursement

Health and wellness programs

Risks

Shift towards blockchain solutions may disrupt traditional services like Cast & Crew.

WGA strike in 2023 causes production delays, impacting Cast & Crew's revenue.

AI-driven scriptwriting tools threaten traditional software like Final Draft.

Differentiation

Cast & Crew offers 24/7 online support and electronic payroll interfacing.

PSL3 software integrates internet convenience into production accounting.

Cast & Crew's staff expertise is a hallmark of their service quality.

Upsides

Increased demand for remote production tools boosts Cast & Crew's digital solutions.

Expansion of tax incentive programs enhances demand for tax credit management services.

Rise of independent creators increases need for scalable production management solutions.

Land your dream remote job 3x faster with AI

Try Jobo Free