Secure Software Engineer
Description:
Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you.
Equifax Application Security Testing is currently looking for a talented Secure Software Engineer to support the organization's comprehensive efforts to identify and remediate software security defects. The successful candidate will work in a fast-paced, highly dynamic environment. The candidate will work with various teams across the organization to support all stages of the Secure System Development Cycle. The ideal candidate will demonstrate an aptitude for the development of relationships in a large complex ecosystem, with the support of leadership.
What you’ll do
Perform code reviews, and static analysis results and provide secure practices guidance to development teams related to software security defects and assisting them with remediation
Communicate Security concepts and best practices across the team, business units, development teams, and diverse audiences.
Develop and support systems and tools developed by Secure Software Engineering & Application Security
Serve as a mentor by delegating programming and testing responsibilities to one or more team members and monitoring their performance
Review process, procedures, and policies, update documentation, Knowledge Base, and FAQs
What experience you need
5+ years of Experience in two or more of the following languages (Go, Java, Python, C++, C#)
5+ years of Experience with Web Applications, Web Services, and Service Oriented Architectures.
5+ years of Good understanding of SCA, SAST, DAST, and their use in development pipelines.
5+ years of Experience with the OWASP project, the OWASP Top 10 or SANS 25.
5+ years of Experience with the identification and remediation of software security defects.
English proficiency B2 or above
What could set you apart
Cloud certifications (GCP, AWS, Azure)
Relevant certifications (CSSLP, GSSP-.NET, GSSP-JAVA, C CASE, GWEB, GREM, CEH, etc.)
Experience with at least one Static Analysis tool (e.g. Fortify, Veracode, Checkmarx)
Experience with Web & Application Servers (Apache, Tomcat, JBoss, IIS)
We offer comprehensive compensation and healthcare packages, on-site doctor, paramedics service 24/7, life insurance, gym facilities, collaborative workspaces, free transportation and parking, subsidized cafeteria, solidarity association, and organizational growth potential through our online learning platform with guided career tracks.
If this sounds like somewhere you want to work, don’t delay, apply today - we’re looking for you!
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Primary Location:CRI-Sabana
Function:Function - Security Governance and Compliance
Schedule:Full time
J00154081