Responsible for working with Clearwater Analytics development teams to ensure security is injected into the software development lifecycle and products are secure.
This role will focus on implementing, enforcing and validating secure coding practices and engaging directly in application security reviews, threat modeling and ownership over application security vulnerability management.
Responsibilities:
Engage in application security reviews and threat modeling, including code review and dynamic testing.Ability to suggest and implement improvements to existing processes/tooling.Ongoing facilitation of application security vulnerability managementAdvise and support development teams in the area of application securityDemonstrate professional application of information security, compliance, assurance and/or other security practices and principles.Participates in projects and penetration test engagementsUp to date on evolving threats and security vulnerabilitiesAbility to assess risk based on a given risk assessment frameworkActively seeks out opportunities to improve key systems, does not need to be directed on a daily basis.Can help organize a group and coordinate projects or resolution of issues.Assists in definition, documentation, and evolution of best practices for application security programGoes above and beyond basic requirements to support their own team and others.Helps to identify key gaps in security and tooling functionality that will drive significant improvement in application securityHas the ability to take an assignment, project or problem and define, lead and implement a solution to completion.Requirements: 
Prior experience working in Application Security.Proven hands-on experience with security tools such as Burp Suite, OWASP ZAP, and Kali LinuxWorking knowledge of the OWASP Top 10 and how to apply the standard to minimize security risk.Understanding of security best practices and how to implement them at an enterprise level.Basic coding skills – SQL, Python, other scripting languages.Knowledge of secure coding principles and experience with code review processes.Understanding of common Information Security concepts, practices, and proceduresUnderstanding of vulnerability analysis, penetration testing, encryption technologies, intrusion detection, incident responseStrong written and oral communication skills and the ability to prioritize workStrong aptitude for problem solving, math, and communicationStrong organizational and interpersonal skillDesired Experience or Skills:
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related area of studyFive years of information security experienceExperience in at least one programming languageProficiency with SQL, Python, and/or JavaIndustry certifications in cyber security incident managementApplication Development experienceSANS GIAC, CEH, CompTIA Security+