Specialist Application Security Engineer Dast
1 semana atrás
Specialist Application Security Engineer DAST in Lisbon , Portugal Specialist Application Security Engineer LIVE What you will do The Specialist Application Security Engineer plays an integral role in Information Security for Amgen.
The primary responsibility is to support various capabilities within Amgen's Application Security function.You will work with various partners at Amgen in a manner aligned to Amgen's values to define and implement Information Security Services strategies, standards, tools and processes.
The Specialist IS Security Engineer will be a part of Amgen's Information Security team and will be expected to contribute to and help deliver services and projects in other areas of information security.
The role will be part of the Information Security team responsible for delivering security services across Amgen globally.This position will focus on Secure SDLC and Application Security services and technologies to ensure a secure by design approach across Amgen's applications.
The individual will partner with developers and business owners from applicable technical teams to assess the security architecture of new products and capabilities via application security assessments, prioritize and advise on options to mitigate identified flaws and vulnerabilities and work with development teams to define and evangelize security best practices.
Let's do this. Let's change the world.In this vital role you will:
Manage Dynamic Application Security Testing platforms and engagement with development teams and SOC.
Review DAST results for security vulnerabilities and practices dangerous to security and privacy.
Create processes for efficient triaging and remediation of alerts and identified weaknesses produced by DAST platforms.
Script (Python, Perl, Ruby etc) and build automation tools on an ad-hoc basis.
Create and deliver knowledge sharing presentations and documentation to educate developers and operations teams on application security best practices and secure coding techniques.
Write reports including recommendations, root cause analysis, security summary analysis, and project roadmaps.Help with tools identification, onboarding and/or tools development to assist developers in the secure development of applications.
Configure, run, maintain, and utilize security tools for Dynamic Application Security Testing (DAST) platforms and other relevant analysis tools.
Discover threats, vulnerabilities and exploits through architecture design review, threat modeling, code review, DAST and SAST assessments.
Triage issues found by tools, external reports, and various tests, to accurately assess the real risks.
Offer remediation guidance to stakeholders for identified issues and serve as an escalation resource for developers as they remediate issues.
Draft application security policies, standards and guidance documentation that can be leveraged in the secure development of products and services.
Monitor latest application security developments and security trends to continually improve internal processes.Work with DevOps team to improve Application Security; Research, Prototype, integrate Security Tools into CI/CD pipelines (DAST, SAST, IAST, Container security, API security, third party vulnerability Scanning, etc).
Collaborates cross-functionally with analysts, engineers, data scientists to achieve continuous improvement in cyber defense/resilience.Provide mentorship and training on areas of expertise to junior Application Security team members.
Specialist IS Security Engineer will also present project status reports to senior management, adhere to policies and practices relative to technical guidelines and change management processes, and may contribute to the development of new policies and practices by suggesting innovative ideas.
WIN What we expect of you We are all different, yet we all use our unique contributions to serve patients.
The information security professional we seek is team-oriented with these qualifications:Bachelor or Master degree in Information Systems, Computer Science or equivalent and at 6 years of experience in a related field
Strong understanding of common software and web application security vulnerabilities. including OWASP Top 10,, OWASP API Top 10, SANS/CWE Top 25 etc.
Strong working knowledge and hands-on experience with tools and technologies used for Application Security testing (e.g., Burpsuite Enterprise, Burp Suite/ZAP, Synk, Checkmarx, Rapid7, Accunetix, Netsparker, Veracode, WhiteSource, Postman, Swagger, SoapUI, Fiddler, Insomnia)
Security verification of web applications OWASP ASVS and testing guides
Experience driving application security requirements in a traditional SDLC and through stories and epics in an Agile and SCRUM development environment
DevOps experience deploying automated security testing within CI/CD pipelines with GitLab, GitHub etc.
Experience with scripting languages (e.g., Python, Ruby) and automating tasks.
Good hands-on experience with AWS foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
Experience with scripting languages (e.g., Python, Ruby) and automating tasks
Working knowledge of API technologies and platforms e.g., SOAP, REST, GraphQL, gRPC, XML, AWS API GW, MuleSoft
Experience building and maintaining relationships, excellent verbal and written communication skills and effective working with virtual teams
Team-oriented, placing priority on the successful completion of team goals
Self-starter with a high degree of initiative
One or more security certifications such as CSSLP, CISSP, GWEB, GSSP-JAVA or CEH
THRIVE What can you expect of us As we work to develop treatments that take care of others, so we work to care for our teammates' professional and personal growth and well-being.
Vast opportunities to learn, develop, and move up and across our global organization.Diverse and inclusive community of belonging, where colleagues are empowered to bring ideas to the table, take risks, and act.
Generous Amgen Total Rewards Plan comprising healthcare, finance, wealth and career benefits.APPLY NOW FOR A CAREER THAT DEFIES IMAGINATION In our quest to serve patients above all else, Amgen is the first to imagine, and the last to doubt.
Join us.CAREERS.AMGEN.COM EQUAL OPPORTUNITY STATEMENT Amgen is an Equal Opportunity employer and will consider you without regard to your race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status.
We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
Please contact us to request an accommodation.#J-18808-Ljbffr
-
Specialist Application Security Engineer Dast
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (IR) Tempo inteiroSpecialist Application Security Engineer DAST page is loaded Specialist Application Security Engineer DAST Apply remote type Flex Commuter / Hybrid locations Portugal Lisbon time type Full time posted on Posted 3 Days Ago job requisition id R Career Category Information SystemsJob Description Specialist Application Security Engineer LIVEWhat you will do The...
-
Specialist Application Security Engineer Dast
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (Ir) Tempo inteiroSpecialist Application Security Engineer DAST page is loaded Specialist Application Security Engineer DAST Apply remote type Flex Commuter / Hybrid locations Portugal - Lisbon time type Full time posted on Posted 3 Days Ago job requisition id R Career CategoryInformation SystemsJob DescriptionSpecialist Application Security Engineer LIVEWhat you will do The...
-
Specialist Application Security Engineer Sast
1 semana atrás
Lisboa, Lisboa, Portugal Security Bank & Trust Co. Tempo inteiroSpecialist Application Security Engineer SAST (x2) in Lisbon, Portugal Specialist Application Security Engineer LIVE What you will do The Specialist Application Security Engineer plays an integral role in Information Security for Amgen. The primary responsibility is to support various capabilities within Amgen's Application Security function. You will work...
-
Specialist Application Security Engineer Sast
1 semana atrás
Lisboa, Lisboa, Portugal Lz Security & Service Gmbh Tempo inteiroSpecialist Application Security Engineer SAST (x2) in Lisbon , Portugal Specialist Application Security Engineer LIVE What you will do The Specialist Application Security Engineer plays an integral role in Information Security for Amgen. The primary responsibility is to support various capabilities within Amgen's Application Security function. You will work...
-
Specialist Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (Ir) Tempo inteiroSpecialist Application Security Engineer page is loaded Specialist Application Security Engineer Apply remote type Flex Commuter / Hybrid locations Portugal - Lisbon time type Full time posted on Posted 8 Days Ago job requisition id R Career CategoryInformation SystemsJob DescriptionTHE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to over...
-
Specialist Application Security Engineer Sast
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (Ir) Tempo inteiroSpecialist Application Security Engineer SAST (x2) page is loaded Specialist Application Security Engineer SAST (x2) Apply remote type Flex Commuter / Hybrid locations Portugal - Lisbon time type Full time posted on Posted 3 Days Ago job requisition id R Career CategoryInformation SystemsJob DescriptionSpecialist Application Security Engineer LIVEWhat you...
-
Specialist Application Security Engineer Sast
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (IR) Tempo inteiroSpecialist Application Security Engineer SAST (x2) page is loaded Specialist Application Security Engineer SAST (x2) Apply remote type Flex Commuter / Hybrid locations Portugal Lisbon time type Full time posted on Posted 3 Days Ago job requisition id R Career Category Information SystemsJob Description Specialist Application Security Engineer LIVEWhat you...
-
Specialist Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Sa Tempo inteiroTHE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to over 300 multi-national and multi-cultural employees, representing a broad range of cross functional capabilities, including Commercial, General and Administrative, Research and Development and more. The ACCP will offer rich career growth and development opportunities, regional and global...
-
Specialist Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Tempo inteiroTHE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to over 300 multi-national and multi-cultural employees, representing a broad range of cross functional capabilities, including Commercial, General and Administrative, Research and Development and more. The ACCP will offer rich career growth and development opportunities, regional and global...
-
Specialist Application Security Engineer
3 semanas atrás
Lisboa, Lisboa, Portugal Amgen Tempo inteiroTHE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to over 300 multi-national and multi-cultural employees, representing a broad range of cross functional capabilities, including Commercial, General and Administrative, Research and Development and more. The ACCP will offer rich career growth and development opportunities, regional and global...
-
Specialist Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (IR) Tempo inteiroSpecialist Application Security Engineer page is loaded Specialist Application Security Engineer Apply remote type Flex Commuter / Hybrid locations Portugal - Lisbon time type Full time posted on Posted 8 Days Ago job requisition id R Career Category Information SystemsJob Description THE AMGEN CAPABILITY CENTER IN LISBON, PORTUGAL (ACCP) will be home to...
-
Specialist Security Engineer – Email
1 semana atrás
Lisboa, Lisboa, Portugal Security Bank & Trust Co. Tempo inteiroAmgen Specialist Security Engineer – Email in Lisbon, Portugal Specialist Security Engineer LIVE WHAT YOU WILL DO Amgen is searching for a Specialist Security Engineer covering Email and Data Loss Prevention (DLP) technologies. This role will work for the Manager of Data Security in direct support of the global email management group. This position will...
-
Specialist Security Engineer – Email
1 semana atrás
Lisboa, Lisboa, Portugal Lz Security & Service Gmbh Tempo inteiroAmgen Specialist Security Engineer – Email in Lisbon , Portugal Specialist Security Engineer LIVE WHAT YOU WILL DO Amgen is searching for a Specialist Security Engineer covering Email and Data Loss Prevention (DLP) technologies. This role will work for the Manager of Data Security in direct support of the global email management group. This position will...
-
Specialist Is/Ot Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Amgen Inc. (Ir) Tempo inteiroSpecialist IS/OT Security Engineer page is loaded Specialist IS/OT Security Engineer Apply remote type Flex Commuter / Hybrid locations Portugal - Lisbon time type Full time posted on Posted Yesterday job requisition id R Career CategoryComplianceJob Description SPECIALIST IS/OT SECURITY ENGINEER Live What you will do Let's do this. Let's change the world....
-
Specialist Security Engineer – Email
1 semana atrás
Lisboa, Lisboa, Portugal LZ Security & Service GmbH Tempo inteiroAmgen Specialist Security Engineer – Email in Lisbon , PortugalSpecialist Security EngineerLIVEWHAT YOU WILL DOAmgen is searching for a Specialist Security Engineer covering Email and Data Loss Prevention (DLP) technologies. This role will work for the Manager of Data Security in direct support of the global email management group. This position will...
-
Senior Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Antal International Network Tempo inteiroThe Role:As a Senior Security Engineer, you will play a pivotal role in establishing and spearheading our company's appsec program, ensuring the security of our products and services. You will be responsible for conducting comprehensive security assessments, identifying and remediating vulnerabilities, and collaborating with our product and tech teams to...
-
Senior Application Security Engineer
1 semana atrás
Lisboa, Lisboa, Portugal Antal International Tempo inteiroSenior Application Security Engineer Lisboa Senior Application Security EngineerLisboa Lisbon, Lisbon, Portugal Job Description The Role: As a Senior Security Engineer, you will play a pivotal role in establishing and spearheading our company's appsec program, ensuring the security of our products and services. You will be responsible for conducting...
-
Specialist Security Engineer – Email
1 semana atrás
Lisboa, Lisboa, Portugal Amgen SA Tempo inteiroSpecialist Security Engineer LIVE WHAT YOU WILL DO Amgen is searching for a Specialist Security Engineer covering Email and Data Loss Prevention (DLP) technologies. This role will work for the Manager of Data Security in direct support of the global email management group. This position will provide essential services that enable us to better pursue our...
-
Application Security Architect
1 semana atrás
Lisboa, Lisboa, Portugal Olisipo Tempo inteiroProfile:Full proficiency in the security features of the development of life cycle technologies (good coding practices, SAST, DAST, SCA, CI/CD integration, DevSecOps, Containerization);Full proficiency in the security features of main analytics technologies (storage, transformation, and datavisualization);Knowledge of risk analysis methodologies and how to...
-
Application Security Expert
Há 1 mês
Lisboa, Lisboa, Portugal Olisipo Tempo inteiroAre you ready to join a team where innovation meets excellence? At Olisipo, we're not just about outsourcing IT solutions; we're about shaping the future of technology. Join us on a journey of endless possibilities and become a part of our legacy.We are looking for a Application Security Expert to integrate a hybrid project in Lisbon.Profile:Experience with...
