As a member of our Infrastructure & Information Security pod, you will support our cloud infrastructure by developing tools, building services, and providing consultative services to our engineering teams. You will be a key part in safeguarding our creators who entrust Teachable with their content every day. You’ll plan and carry out security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks.
- Known Framework Architecuture
- Familiarity with MITRE's ATT&CK Framework
- Leading or conducting Adversary Emulations
- Familiarity with industry Adversary Emulation Frameworks like CBEST, iCAST, GFMA
- Leading or conducting Purple Team Testing
- Participation in Cyber Tiger Team operations
- Conducting Vulnerability Assessments and Penetration Testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience
- Identifying, researching, validating, and exploiting various different, known, and unknown security vulnerabilities on the server and client side
- Reporting information security vulnerabilities to businesses and senior management
- Providing support in remediation efforts
- Web application infrastructure. e.g. Application Servers, Web Servers, Databases
- Experience with automation of security testing as part of a CI/CD pipeline
- Web development and programming languages. e.g. Python, Perl, Ruby, Java, .Net
- Develop and implement secure software development lifecycle (SSDLC)
- Experience with any of the application security tools as Checkmarx, Sonatype, OWASP ZAP, Portswigger Burp, IBM AppScan, HP WebInspect, or Acunetix.
- Experience in Cloud security including AWS.
- Continuous learning on the job
- You want to build things, not just break them
- Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent experience
- CSSLP
$41K <= $60K <= $84K
$39K <= $54K <= $59K
$73K <= $100K <= $130K
$55K <= $87K <= $132K
£30K <= £48K <= £120K
AU$56K <= AU$90K <= AU$145K
- https://ishaqmohammed.me/posts/application-security-engineer-interview-questions/
- https://www.wisdomjobs.com/e-university/application-security-interview-questions.html