Application Security Engineer

The Position:

As a member of the application security team the candidate will focus on tasks that ensure applications, platforms, and services are secure. This includes all forms of security analysis and testing, as well as developing and operating security analysis tools to ensure thorough and repeatable detection and testing. Furthermore, the candidate will work with software engineers to assist with the design and development of secure software and with diagnosing and devising effective remedies for security problems. Ensuring that security policies and practices are followed throughout product development is another key aspect of the position.

In this role, you will:

  • Develop, curate, automate, and operate tools to perform security testing Curate existing tools and develop custom tools to ensure secure development and deploymentEvaluate tools regarding fitness to support full-scale development organization and cloud fleet
    • Automated testing for security vulnerabilities - detection, reproduction, and regression testing
    • Integration of tools with Pega Platform and Applications
    • Run vulnerability assessments on Pega products
  • Static source code analysis
    • Dynamic application security testing
    • Source code analysis
  • Lead secure development efforts
    • Formulate secure coding policies
    • Train developers as to secure coding practices
    • Assist software developers in diagnosing and fixing security bugs
    • Evaluate and verify security bug fixes
    • Reproduce and create repeatable tests for security bugs
    • Evaluate and verify fixes and mitigations for security issues
  • Lead secure software design efforts
    • Identify security risks and participate in threat modeling
    • Identify security requirements
    • Assess risk of choices for the purpose of making secure design decisions

Pega Offers:

A rapidly growing yet well-established business
The world's most innovative organizations as reference-able clients
Analyst acclaimed technology leadership in a massive emerging market
An opportunity to work in a growing application security program within a growing company

The Person:

A member of the application security team must be strong in reading and writing software code and must be comfortable with web and mobile application technologies. The person must be able to communicate and explain the security impact of issues and secure coding practices. The person must be able to collaborate with other application security team members and with software developers. A security professional must be able to take an analytical approach that can look beneath the surface to identify weaknesses and opportunities for solutions.

Qualifications include:

Understanding of web and mobile application technologies
Ability to choose, curate, and make effective use of security testing tools
Ability to test web applications including security attacks
Ability to communicate technical issues clearly
Critical thinking with respect to software documentation and code - ability to look beneath the surface and find the hidden insecurities that may emerge

About Pegasystems:

Pegasystems is the leader in software for customer engagement and operational excellence. Pega's adaptive, cloud-architected software empowers people to rapidly deploy and easily change applications to meet strategic business needs. Over our 35-year history, Pega has delivered award-winning capabilities in CRM and digital process automation (DPA), powered by artificial intelligence and robotic automation, to help the world's leading brands achieve breakthrough business results.

We value diversity in our workforce and welcome enquiries from all suitably qualified applicants.

Our GDPR Candidate Privacy Notice is available here

Back to top