Senior Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Cotiviti · 10 hours ago

Senior Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$130K/yr - $165K/yr
date8+ years exp

Cotiviti is a company focused on engineering and IT solutions, and they are seeking a Senior Application Security Engineer. The role involves ensuring the security of business applications through various practices such as code scanning, risk assessment, and educating development teams on secure coding methodologies.

Responsibilities

Application of secure code practices. Ensuring compliance with secure coding practices. Ensuring products and services are scanned for defects and security issues. Ensuring those defects and security issues are resolved. Coordination with DevOps, Software Engineering and Development teams on remediating defects that are related to security issues
Onboarding of applications into the web application firewall along with configuration and troubleshooting
Training Developers on secure code practices. Ensuring the SDLC includes secure coding methodology. Ensures that the user community understands and adheres to necessary procedures to maintain security
Performs root cause analysis of complex application security issues and provides recommendations to stakeholders on the best course of action to remedy the problem
Performs ongoing application security reviews to ensure compliance with internal security standards and regulatory requirements
Assist in responses to external audits, penetration tests and vulnerability assessments
Participate in on-call system administration support including but not limited to weekends, holidays and after-business hours as required to service the needs of the business
Interview, develop, coach, lead and retain top-tier talent, with a focus on building and improving a team and culture that is able to assist in employing best in class practices to support and drive high levels of internal and external customer satisfaction
Complete all responsibilities as outlined in the annual performance review and/or goal setting
Complete all special projects and other duties as assigned
Must be able to perform duties with or without reasonable accommodation

Qualification

Application SecurityVulnerability ManagementSecure Coding PracticesWeb Application FirewallAgile DevelopmentPenetration TestingSecurity CertificationsAPI SecurityProject ManagementCommunication SkillsProblem SolvingLeadership SkillsTime Management

Required

BS degree in Cyber Security/Computer Science/MIS, equivalent and a minimum of 8 years relevant industry experience
Experience with agile development methodologies (Scrum, Kanban, sprint iterative)
Demonstrated passion for information security and application security
8 years in application security with hands-on exposure to industry standard platforms like Veracode, Rapid7, WAF, Burp Suite and/or Fortify
Vulnerability management and remediation experience
Experience securing API's
Active involvement with practices emerging from OWASP, NIST and SANS
Experience validating penetration test findings and recommending remediations
Demonstrated project management skills and ability to track and report progress against established milestones, metrics and deliverables
Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy to both technical and non-technical audiences
Excellent aptitude for problem solving. Self-starter, team player, personable, enthusiastic, hardworking, and enjoy interfacing with external and internal customers on a day-to-day basis

Preferred

Hands-on experience administering a variety of secure code platforms with proven ability to run static and dynamic application security tests (SAST and DAST) and/or implementation/administration of web application firewalls (WAF)
Security certification a plus (CISM, CISSP, CEH, OSCP)
Demonstrated knowledge and understanding of Application Security trends and emerging technologies (Docker, Kubernetes, etc.)
Experience in Java and/or .NET platforms

Benefits

Medical
Dental
Vision
Disability
Life insurance coverage
401(k) savings plans
Paid family leave
9 paid holidays per year
17-27 days of Paid Time Off (PTO) per year, depending on specific level and length of service with Cotiviti.

Company

Cotiviti

twitter
Glassdoor3.7
company-logo
Cotiviti enables healthcare organizations to deliver better care at lower cost through advanced technology and data analytics that improve the quality and sustainability of healthcare in the United States.
dateFounded in 1979
location
South Jordan, UT, US
people-size5001-10000 employees
web-link
http://www.cotiviti.com

H1B Sponsorship

Cotiviti has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (165)
2024 (118)
2023 (90)
2022 (102)
2021 (72)
2020 (67)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Adam Gilbert
Director, Interoperability Operations and Partnerships
linkedin
leader-logo
Chris McIntyre
Sr. Program Manager, RQNC Operations
linkedin

Recent News

PE HUB
KKR and Veritas Capital recap healthcare data analytics firm Cotiviti
2024-05-05
Business Wire
Cotiviti Named 2024 Best in KLAS® for Payer Quality Measurement and Reporting
2024-04-07
WSJ
KKR to Acquire a Stake in Cotiviti From Veritas Capital - WSJ
2024-04-07
Company data provided by crunchbase