Penetration testing (DAST/SAST/SCA) 3 - 8 Yrs

• Jobseeker Video Testimonials 
  
• Employee Glassdoor Reviews
  

We are an IT Solutions Integrator/Consulting Firm helping our clients hire the right professional for an exciting long term project. Here are a few details.

Requirements

Job Description

We are seeking an experienced Application Security Engineer to join our Information Security team. Our application security program ensures that all software—whether developed in-house or acquired—meets GreenDot’s stringent security standards, while enabling rapid innovation to meet customer needs. This role will focus on enhancing existing security processes and collaborating with development leaders to integrate security best practices throughout the software development lifecycle.

Key Responsibilities

• Embed security practices into the software development pipeline.
  

• Manage the Application Security Assurance program (SAST/DAST/SCA) and review results to ensure compliance with security standards.
  

• Conduct code reviews and propose secure architecture designs.
  

• Act as a Subject Matter Expert (SME) for enterprise projects, providing security consulting and recommendations during development phases.
  

• Perform security and design reviews, as well as penetration testing for internal applications and external partner solutions.
  

• Test the security of web applications, web services (SOAP/REST), and mobile applications (iOS/Android).
  

• Possess familiarity with network and infrastructure penetration testing practices.
  

• Support the adoption of secure design principles in line with organizational policies, standards, and patterns.
  

• Collaborate with security vendors and service providers for product evaluations, proof-of-concepts, and pilot deployments.
  

Qualifications & Competencies

• Bachelor’s degree in Computer Science, Software Engineering, or related field (or equivalent experience).
  

• 6–10 years of experience in penetration testing, secure code reviews, and static/dynamic/manual source code analysis.
  

• Hands-on development experience with Java, JavaScript, and C#.
  

• Proficiency with security testing tools for SAST, DAST, IAST, and penetration testing (e.g., BurpSuite).
  

• Experience conducting manual penetration tests for web, thick client, mobile, and web services.
  

• Strong knowledge of attack methods, mitigation techniques, bug bounty programs, and threat modeling.
  

• Skilled with tools like BurpSuite, Mobile SDKs, SOAPUI, and debuggers.
  

• Deep understanding of software and web vulnerabilities (OWASP Top 10, SANS/CWE Top 25).
  

• Knowledge of Single Sign-On (SSO), OAuth, and SAML frameworks.
  

• Familiarity with GitHub Advanced Security and scripting languages (Python preferred).
  

• Strong passion for security topics and engineering excellence.
  

• Excellent verbal and written communication skills.
  

• Ability to quickly learn new technologies and handle complex technical challenges.
  

• Relevant certifications (CISSP, OSCP, GPEN, CPT) are a plus.
  

Benefits

Visit us at http://alignity.io/careers. Alignity Solutions is an Equal Opportunity Employer, M/F/V/D.