Application Security Engineer
hace 2 semanas
About the Role
The Application Security Engineer role is pivotal to the NinjaOne team. It has company-wide visibility and includes deliverables stretching across individual developers to executive leadership. As part of our core information technology team, you will directly contribute to the user experience of our 10,000+ customers across the Managed-Service-Provider space and in enterprise/corporate IT shops.
Working directly with development, platform, and product teams you will integrate security into the product lifecycle from design through development. The ideal candidate is a subject matter expert in defining security requirements, performing application security assessments, and providing developers with remediation guidance and advice. On any given day you may be pulled in to evaluate a new system, review a proposed change, or provide guidance on security/coding best practices. You will also serve as a leader and mentor, as there are other team members who are junior in these areas of expertise—as well as in their careers.
English resumes required
Location – Ecuador, Colombia, Brazil and Mexico
What You’ll be Doing
Anticipate possible security threats and identifying areas of weakness in Ninja’s environments and software
Partner with Ninja Engineering to perform code analysis of large applications manually and with the assistance of SAST and DAST tools
Partner with engineering in triaging the reported findings by SAST, DAST, SCA, SBOM and similar products to reduce the potential False-positive rates
Perform security architecture design reviews of our products and infrastructure
Identify and perform well-controlled security vulnerability hunting through source code reviews and penetration testing of Ninja’s environments and software
Provide remediation guidance and recommendations to developers and platform engineers
Work with Engineering Managers team to help perform threat modeling of features and to prioritize and validate the urgency of identified vulnerabilities and security enhancement requests
Identify knowledge gaps and define security best practices for development teams to understand, follow, and receive training for
Develop comprehensive and accurate reports and presentations for both technical and executive audiences (may be internal to Ninja, or external such as prospects/clients or media)
About You
3+ years of hands-on experience as an application security engineer, architect, or developer
5+ years of experience within cybersecurity related fields
Solid understanding of security protocols, cryptography, authentication, authorization, and security
Experience breaking down complex systems and applications to find security and logic flaws
Strong cloud experience (AWS, Azure, GCP) and how to securely architect cloud-native solutions
Familiarity with common vulnerabilities and attack vectors along with their mitigations
Good working knowledge of current cybersecurity risk frameworks (OWASP/NIST/BSIMM), threat modeling (STRIDE/DREDD) , best practices for hardening systems (CIS/CSA) and familiarity with FedRAMP (FIPS 140-2)
Expertise with modern software build systems: IaC, CI/CD, Containers
Expertise with Linux, Windows, and MacOS operating systems: how they’re architected in the enterprise and solutions for securing them
Strong knowledge of TCP/IP & UDP protocols and networking design/architecture
Extensive experience in information security and/or IT risk management with a focus on security, performance, and reliability
Proficiency with multiple software languages (Java, C++, Python, JavaScript, Kotlin, and Swift recommended)
Strong critical thinking, analytical, and logical problem-solving skills
Ability to interact with a broad cross-section of personnel to explain and enforce security measures
A degree in Information Technology, Computer Science or related field is highly desirable
OSCP, OFFSEC, GREM, GDAT, CISSP or equivalent certification
About Us
NinjaOne automates the hardest parts of IT, empowering more than 17,000 IT teams with visibility, security, and control over all endpoints. The NinjaOne platform is proven to increase productivity, while reducing risk and IT costs. NinjaOne is consistently ranked #1 for its world-class support and is the top-rated software on G2 in seven categories including endpoint management, remote monitoring and management, and patch management.
What You’ll Love
We are a collaborative, kind, and curious community.
We honor your flexibility needs with full-time work that is remote.
We prioritize your work-life balance with our unlimited PTO.
We reward your work with opportunity for growth and advancement.
#LI-SP1
#BI-REMOTE
#J-18808-Ljbffr-
Web Security Gateway Implementation Engineer
hace 3 semanas
México Skyhigh Security A tiempo completoMexico City, Distrito Federal, Mexico Job ID: JR0032447 Job Title: Web Security Gateway Implementation Engineer Role Overview: As a Web Security Gateway Implementation Engineer, you will design and deploy Cloud Security solutions across large enterprise customers. You will follow best practices across the Cloud Security and Governance solutions for one...
-
Application Security Test Engineer
hace 6 días
Naucalpan de Juárez, México Zurich Insurance Company A tiempo completoZurich Capability Ceter is looking for a Application Security Test Engineer Test Engineer is responsible to Application security toolset administration for the Security Testing BTS Team, providing global support to Zurich IT projects and to enable them to perform SAST, DAST and IAST toolset management. Administrate Security Testing automated...
-
Application Security Architect
hace 4 semanas
Ciudad de México TD SYNNEX A tiempo completo**Job Description Summary**: TD SYNNEX Corporation, a $60B global distributor is dedicated to protect the enterprise and our supply chain partners from cyber security risks. That's especially true today as new risks and complexities brought on by regulatory mandates, rapidly evolving technologies, and the digitalization of business operations are disrupting...
-
Senior Security Engineer
hace 1 semana
Ciudad de México Incode Technologies A tiempo completoIncode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online to power a world of digital trust. Through our revolutionary identity solutions, we are unleashing the business potential of universal industries including finance, government, retail, hospitality, gaming and...
-
Application Security Tester
hace 4 semanas
Ciudad de México Santander A tiempo completoApplication Security Tester Country: Mexico **Grupo Santande **r es el banco líder que a través de más de 160 años de reinvención, ha llegado a ser una organización sin fronteras con presencia en más de 40 países, 95 nacionalidades y equipos multiculturales que comparten 4 idiomas. Lo importante para nosotros son nuestros clientes, colaboradores,...
-
Senior Cloud Security Engineer
hace 4 semanas
Ciudad de México Signifyd A tiempo completoPlease apply in English About the role As a Senior Cloud Security Engineer at Signifyd, you will work to control and improve security outcomes across the company. You will operate at the front line of risk, identifying vulnerabilities and threats, and collaborate cross-functionally across the organization to implement defenses. As a core member of our...
-
Security Architect
hace 3 semanas
Ciudad de México Tiger Text A tiempo completoSecurity ArchitectCountry : Mexico Position Summary The role will be responsible for supporting the Information Security reference architecture and controls review for all of Santander entities. Essential Duties and Responsibilities Assess architectural patterns for service account authentication, Privileged Access Management, secdevops pipeline,...
-
security supervisor
hace 1 semana
Ciudad de México, Ciudad de México Eni A tiempo completoIRC SECURITY SUPERVISORAt Eni, we are looking for a Security Supervisor within Eni Mexico in Mexico City. You will be responsible for handling all aspects of operational security incompetence ensuring the respect of the security procedure and coordinating and verifying of security personnel. When required, activate the security emergency response plan.As a...
-
Lead Security Solutions Engineer
hace 4 semanas
Ciudad de México dynaTrace software GmbH A tiempo completoAn excellent opportunity to be a key contributor to the exciting Dynatrace Security Solution journey. The individual will closely work with the broader solutions engineering team and security sales specialist team to drive the technical lane in opportunities and will be responsible for providing pre-sales technical support and expert guidance to the broader...
-
Devsecops Security Engineer
hace 4 semanas
Edo. de México Ford Motor Company A tiempo completoAble to work well with software development teams. - Experience identifying security issues through code review. - Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner. - Familiarity with some common security libraries and tools (e.g. static analysis tools, proxying /...
-
IT Security Lead
hace 4 semanas
Ciudad de México CHUBB A tiempo completoThe Cybersecurity Manager is the primary technical security contact within their region for security risk analysis, gap identification, and mitigation/remediation activities. Engage with key stakeholders to ensure that processes and initiatives operate within the documented security org framework, monitor security policy/standards compliance, and...
-
Cyber Security Operations Engineer
hace 4 semanas
México Gates Corporation A tiempo completoGates Corporation has an exciting opportunity for a Cyber Security Engineer at our Center of Excellence in Santa Fe, Mexico. This is a key role in our growing Cyber Security group. This position is a full-time, permanent, and is salaried with standard work hours, and requires very little travel. We are looking for someone who can start immediately. The...
-
Zia Security Engineer
hace 1 semana
Ciudad de México Capital Empresarial Horizonte A tiempo completo**Capital Empresarial Horizonte Empresa Mexicana especialista en Recursos Humanos y Tecnologías de la Información Solicita**: **ZIA Security Engineer** **Perfil** **Escolaridad**: Ingeniería en Sistemas, Informática o afín. **Nível de inglés: inglés Conversacional INDISPENSABLE** **Experiência**: 3 años de experiência. Lugar a laborar:...
-
Security Test Engineer
hace 5 días
Naucalpan de Juárez, México Zurich Insurance Company Ltd. A tiempo completoZurich Capability Center is looking for: Security Test Engineer Zurich is heavily transforming to an organization where all our projects are built following Agile and DevOps methodologies. You have the chance to actively be part of this transformation and help shaping the future.You'll be responsible provide penetration testing for the Application Security...
-
Information Security Solution Analyst
hace 2 semanas
Ciudad de México Takeda A tiempo completoBy clicking the “Apply” button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Takeda’s Privacy Notice and Terms of Use . I further attest that all information I submit in my employment application is true to the best of my...
-
Cyber Security Architect
hace 7 días
Ciudad de México Capgemini A tiempo completo**RH: Omar Gonzalez** **Position: Cyber Security Architect **Location**:Aguascalientes **Industry - Sector**:MALS **What you’ll do?** - The job of cybersecurity architect is a senior-level position responsible for planning, designing, testing, implementing and maintaining the organization HR portfolio: - Application Securit y, cryptography and...
-
Security Consulting Engineer
hace 4 semanas
Ciudad de México Cisco Systems A tiempo completoWhat you'll do Cisco Customer Experience (CX) is a compelling reason for our customer to repeatedly choose Cisco. Through constant innovation and a dedication to customer success, we continue to lead the industry in collaborative support across all solutions and technologies. With a technology runway that never ends, opportunities to develop your depth,...
-
Senior Network Security Operations Engineer
hace 4 semanas
México Schneider Electric Norge AS A tiempo completoAs a Senior Network Security Operations Engineer, you will play a critical role in ensuring the stability, integrity, and security of our organization's network infrastructure. Leveraging your extensive experience and expertise in network security operations, you will collaborate with a highly skilled team of professionals to analyze, troubleshoot, and...
-
Senior Security Support Engineer
hace 4 semanas
Ciudad de México IQsec SA de CV A tiempo completoIQsec es una empresa 100% mexicana con más de 10 años en el mercado, brindamos soluciones integrales de Seguridad Informática y soluciones especializadas e innovadoras en el mercado de Ciberseguridad, nos encontramos en búsqueda de: Senior Security Support Engineer unirse a nuestro equipo. **Requisitos** Lic. en Informática, tecnologías de la...
-
Security Test Engineer
hace 1 semana
Naucalpan de Juárez, México Zurich Insurance Company A tiempo completoZurich Capability Center is looking for: Security Test Engineer Zurich is heavily transforming to an organization where all our projects are built following Agile and DevOps methodologies. You have the chance to actively be part of this transformation and help shaping the future. You’ll be responsible provide penetration testing for the...