Senior Security Engineer, Application & Cloud
Rad AI- Full Time
- Senior (5 to 8 years)
Candidates must possess 8+ years in information security with at least 4 years of application security experience, along with 3+ years of experience in cloud environments, specifically Azure or AWS, with a focus on application and container security. Deep knowledge of SAST, DAST, and SCA tools and remediation strategies is required, as well as a strong grasp of OWASP Top 10, SANS Top 25, and secure development principles. Proven ability to guide engineering teams through vulnerability remediation and excellent analytical and communication skills are also necessary.
The Senior Information Security Engineer will analyze results from SAST, DAST, and SCA tools, delivering clear and actionable remediation guidance to engineering teams. They will collaborate with developers to resolve vulnerabilities and promote secure coding practices, develop and maintain security guidelines aligned with OWASP standards, conduct threat modeling and application-level risk assessments, provide expertise on container security in Azure, track and manage remediation efforts, build and maintain robust vulnerability management processes, partner with DevOps to embed security controls into CI/CD pipelines, create security documentation, lead penetration testing initiatives, and support incident response efforts related to application vulnerabilities. They will also oversee the organization’s vulnerability management program and ensure comprehensive coverage and effective risk mitigation.
Cloud-based solutions for government agencies
Accela provides cloud-based solutions designed for government agencies to enhance civic engagement and streamline operations. Its main product, the Construct API, enables developers to create applications that improve interactions between government entities and citizens. These applications can assist with various civic functions, including permitting, licensing, code enforcement, and public health management. Accela differentiates itself from competitors by offering a subscription-based Software as a Service (SaaS) model, along with open-source tools and resources that foster a community of developers focused on civic technology. The company's goal is to improve efficiency, transparency, and citizen satisfaction in government services.