Senior Security Engineer, Application Security
Trail of BitsFull Time
Senior (5 to 8 years)
Candidates must have a High School Diploma/GED and at least five years of experience in application security, secure code review, or a related discipline. Strong technical expertise in application security coding practices and testing methodologies is required, along with experience with SAST, DAST, and ASPM tools like Checkmarx and Burp Suite. A proven track record of conducting security risk and vulnerability assessments, knowledge of common application vulnerabilities (OWASP Top 10, CWE) and remediation techniques, and understanding of multiple programming languages and frameworks are necessary. Experience with DevSecOps practices and CI/CD pipeline security integration in a GitHub environment, strong communication skills, and the ability to collaborate with development teams are also essential. The candidate must be legally authorized to work in the United States without sponsorship.
The Senior Security Engineer will secure applications throughout the development lifecycle by developing threat models and conducting security risk analysis. They will implement application security tools, provide security guidance to development teams, and perform vulnerability assessments. This role involves educating developers on secure coding practices, working with engineering teams to remediate security issues, and translating security findings into practical remediation steps. Key responsibilities include conducting security risk assessments and SAST, integrating security testing into CI/CD pipelines, providing security consultation, analyzing scan results, creating secure development materials, tracking application security metrics, and performing DAST as needed.
Develops and delivers prescription medicines globally
Eli Lilly and Company is a global pharmaceutical company that focuses on discovering, developing, and delivering medicines to improve health. The company has a long history of scientific achievements, including the creation of insulin, the first life-saving treatment for diabetes. Lilly's operations involve extensive research and development to create new medications and enhance existing ones, ensuring they are safe and effective. Their products are primarily prescription medicines sold to healthcare providers for various medical conditions, including diabetes, cancer, and pain management. What sets Lilly apart from its competitors is its strong commitment to ethical practices and the protection of its products from counterfeiting. The company's goal is to enhance lives through innovative medical solutions while maintaining high standards of quality and ethics.