Equifax Application Security Testing is currently looking for a talented Security Software Engineer to support the organization's comprehensive efforts to identify and remediate software security defects. The successful candidate will work in a fast-paced, highly dynamic environment. The candidate will work with various teams across the organization to support all stages of the Secure System Development Cycle. The ideal candidate will demonstrate an aptitude for the development of relationships in a large complex ecosystem, with the support of leadership.

What you’ll do

Perform code reviews, and static analysis results and provide secure practices guidance to development teams related to software security defects and assisting them with remediationCommunicate Security concepts and best practices across the team, business units, development teams, and diverse audiences.Develop and  support systems and tools developed by Secure Software Engineering & Application Security Serve as a mentor by delegating programming and testing responsibilities to one or more team members and monitoring their performanceReview process, procedures, and policies, update documentation, Knowledge Base, and FAQs

What experience you need

Bachelor's degree in Computer Science, Systems Engineering, related career or equivalent job experience5+ years of Experience in two or more of the following languages (Go, Java,  Python, C++, C#)5+ years of Experience with Web Applications, Web Services, and Service Oriented Architectures.5+ years of Good understanding of SCA, SAST, DAST, and their use in development pipelines.5+ years of Experience with the OWASP project, the OWASP Top 10 or SANS 25.5+ years of Experience with the identification and remediation of software security defects.Strong communication skills, English B2 minimun, Spoken and written.

What could set you apart

Cloud certifications (GCP, AWS, Azure) Relevant certifications (CSSLP, GSSP-.NET, GSSP-JAVA, C|CASE, GWEB, GREM, CEH, etc.)Experience with at least one Static Analysis tool  (e.g. Fortify, Veracode, Checkmarx)Experience with Web & Application Servers (Apache, Tomcat, JBoss, IIS)

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time