
Job Information
TraceLink, Inc. Product Security Engineer II in Wilmington, Massachusetts
As part of the Security team, this individual will help support and advance the security of TraceLink’s applications. Working closely with the Product Management, Architecture, Engineering, and Security teams, this role will continually improve security integration throughout the software development lifecycle. This includes activities such as being a security subject matter expert for priority products, conducting security assessments (hacking), developing automation, managing vulnerabilities discovered by tooling, maintaining automated tooling, and developing and delivering training.
Responsibilities:
Provide guidance to Engineering teams on security best practices throughout the SDLC
Secure architectures and requirements
Threat modeling
Secure coding practices
Manual and automated code reviews
Analyze findings from automated tools
Security assessments / white box testing
Drive innovation and improvements to the SDLC with new toolsets and automation
Join in regular security assessments of our products
Continually drive further maturity across TraceLink processes
Support efforts to address identified security issues
Maintain expertise in application security and new threat vectors
Interact externally to help market TraceLink’s security practice
Required Skills:
Experience with the application of threat modeling or other risk identification techniques
Strong knowledge of application security testing tools
Understanding of OWASP Top 10, including avoidance and remediation techniques
Experience in remediating complex enterprise-level security issues
Strong knowledge of secure coding practices in Java and/or JavaScript
Strong analytical and problem-solving skills
Strong verbal and written communication skills
Preferred Skills:
Familiarity with AWS services
Knowledge of microservices architecture and supporting technologies
Knowledge of cryptography technologies
Penetration testing experience
A hacker's mindset
Bachelor's degree or equivalent experience in Computer Science, Information Systems Security, or related field
ID: 2022-2776
External Company Name: TraceLink, Inc.
External Company URL: http://www.tracelink.com
Street: 200 Ballardvale St