Web Application Security Engineer
Company: The MathWorks, Inc.
Location: Natick, MA
Posted on: April 30, 2019
Job Description:
Working under the direction of the IT Security Manager 1, will
be responsible for addressing information security requirements during all aspects of MathWorks application
development process; finding, validating, and fixing security vulnerabilities on strategic global development projects;
developing development security standards, influencing projects during all phases of the SDLC, using application
vulnerability assessment tools, and performing code reviews; providing security insight during the design, development, test,
and release of MathWorks core products; assessing the security requirements and capabilities of SaaS applications used
by MathWorks; evaluating the security of applications through design and code reviews, adherence to application
security standards, and application vulnerability assessments; conducting web application security scans,
analyzing the results for false positives, prioritizing vulnerabilities, and researching and proposing remediation
steps; finding and remediating application vulnerabilities by reviewing source code; drafting, evaluating, and monitoring
compliance with application and development security standards; participating in application design and architecture
reviews; providing security design and vendor configuration reviews for project implementation, including SaaS
and offsite hosting applications; and advocating for security requirements during all phases of the SDLC. Education and Experience: Master’s degree or higher (or foreign education equivalent) in
Information Security, Information Assurance or Cyber Security and no experience. OR Bachelor’s degree (or foreign education equivalent) in
Information Security, Information Assurance or Cyber Security and five (5) years of experience in job offered or five (5)
years of experience in web application development in Java, Ruby or JavaScript. Special Requirements: • Demonstrated expertise performing web application security
assessments using IBM App Scan, HP Fortify, OWASP ZAP, or Burp Suite. • Demonstrated expertise in web application development
according to MVC/MVP/MVVM JavaScript frameworks. • Demonstrated expertise in source code management using
Perforce, SVN, and Git. [Expertise may be gained during Graduate program.] For the position listed above, interested candidates may search
by job code 21173 for specific job details and requirements and apply online on the Careers Page at
http://www.mathworks.com/company/jobs
Keywords: The MathWorks, Inc., Somerville , Web Application Security Engineer, Engineering , Natick, MA, Massachusetts