Security Engineer in Bucuresti

OVERVIEW:Drives implementation of automated tools to support Secure Development Lifecycle (SDL). Drives implementation of software development and operating policies used by developers. Identifies application security gaps. Recommends changes, enhancements, or other mitigating controls using a risk-based approach. Essential Functions:Govern implementation of security scanning tools for projects to support teams with matrix management model in agile environment to assure adherence to SDL and security standardsEnsure security scanning automation works as designed and apply fixes when necessary.Triage code analysis reports and enforce secure coding standardsPerform proof of concept with new technologies, when necessary.Investigate and document possible impact of published vulnerabilities (reported by scanning tools) on Intralinks applications.Take active interest in promoting security awareness and mentor members of the development teams on company security standards, including secure coding guidelinesQualificationsDemonstrated aptitude for learning new technologiesSolid understanding of Secure Development practices3-5 years of experience in web development.Working knowledge of container-based technologies and micro-services.Broad-based business and technical knowledgeFamiliarity with threat modeling is a plusExperience with security penetration testing is a plusA definite plusKnowledge of common application vulnerabilities and techniques to identify and fix themEducationBachelor’s degree in math, engineering or relevant experience