Lead Application Security Engineer

We are on the hunt for a Lead Application Security Engineer tasked with protecting the confidentiality, integrity, and availability of our client's information systems. In this pivotal role, you will deploy a diverse array of security tools and technologies to fortify applications and gaming systems. If you are proactive about security and continuously seek to outsmart potential threats, we invite you to join our dedicated team and propel your security career forward!

#LI-DNI

Responsibilities

• Continuously refine and enhance the application security framework, conducting security assessments for a range of internal and external applications
• Educate and lead web development teams in adopting secure coding practices, facilitating both static and dynamic code analysis
• Crucially contribute to the ideation, development, testing, documentation, implementation, and upkeep of innovative automation solutions and security services within the InfoSec team
• Keep abreast of the latest application security threats and devise targeted InfoSec training that addresses web-based exploits/tools and their mitigation strategies

• Bachelor's or Master's degree in Computer Science or a related technical field, or an equivalent amount of professional experience
• A minimum of 3 years of experience with Information Security principles, technologies, and control processes
• At least one year of proven leadership and team management experience
• Skilled in design review and threat modeling, with a focus on integrating security into application development
• Experienced in delivering security services throughout the software development lifecycle (SDLC)
• Well-versed in Secure Coding practices and acquainted with AppSec frameworks like OWASP Guide, SANS CWE Top 25, and CERT Secure Coding
• Exceptional communication abilities, adept at report writing and producing detailed technical documentation
• Holding certifications such as CEH, OSCP, GPEN, or GWAPT is preferred
• Fluent in English at a B2 level or higher

• Proficiency in programming with languages such as Python, C++, Golang, or Rust
• Experience in configuring and managing AWS infrastructure services
• Deep understanding of core computer science concepts including algorithms, data structures, object-oriented design, and databases
• Demonstrated capability to work collaboratively within a team to develop sophisticated security solutions
• Familiarity with CI/CD systems
• Experience with Docker and Terraform for effective containerization and infrastructure coding

• Improved medical coverage - EPAMers are eligible to participate in a supplementary health insurance program that shall have the usual coverage in the industry, with the Company funding 100% of the value of the monthly premium for participation
• Lunch Allowance - You will receive a daily allowance of CLP $ 7,000 per working day. Enjoy a nice meal on us
• Allowance for internet and electricity - You will receive an allowance of CLP $15,000 per month to cover internet and electricity expense
• National Holiday Bonus - We celebrate joining the Chilean Market. That is why all our employees will receive a bonus of CLP $86,646 in September
• Christmas Bonus - You will receive an End of Year bonus of CLP $170,539. It will be paid during the month of December, to ensure you have a Happy Holiday!
• Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
• Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
• Are you open to relocation? - If you want to relocate to another country and we have the right project, we will assist you every step of the way, to help you and your family, reach your new home