Application Security Specialist

Job SummaryWe are seeking a seasoned Application Security Specialist to join our team. In this role, you will be responsible for identifying and remediating security vulnerabilities in our applications.About the RoleAs an Application Security Specialist, you will play a critical role in ensuring the security and integrity of our applications. Your primary responsibility will be to review findings from scanning tools, validate severity and exploitability, and prioritize overdue medium vulnerabilities. You will also be responsible for documenting justification for false positives, submitting exception requests via approved workflows, and creating Jira tickets for confirmed vulnerabilities.Key ResponsibilitiesVulnerability Triage: Review findings from scanning tools (Burp Suite, ZAP, Mend, Snyk, JFrog XRay, Wiz, Qualys). Validate severity and exploitability, prioritizing overdue medium vulnerabilities. Confirm whether the finding is a true positive or false positive.: Document justification for false positives (e.g., scan logs, GitHub issue link). Submit exception requests via approved workflows: GitHub Exception Templates for Mend, Snyk, Xray email the security team for unresolved cases route Wiz false positives to the Security Platforms team for backend review.Remediation Coordination: For confirmed vulnerabilities, create a Jira ticket in the correct team backlog. Include vulnerability alert details, scanning source reference, and recommended remediation steps. Link the Jira ticket to the original vulnerability alert for traceability. Following sufficient progress is made triaging vulnerabilities, proceed to fix those that require a development change.Reporting & Governance: Maintain accurate records of triage decisions and false positive justifications. Provide weekly updates on backlog reduction progress. Ensure compliance with Risk Vulnerability Management Standards.Required Skills & ExperienceStrong understanding of application security principles and vulnerability types.Experience developing web applications, preferably in a PHP / MySQL environment. with DAST, SAST, SCA, CSPM, and infrastructure scanning tools.Familiarity with Jira and GitHub workflows for issue tracking and exception handling.Ability to analyze scan results and differentiate between true positives and false positives.Excellent communication skills for cross-team collaboration.Performance MetricsReduction of medium vulnerabilities.Timely triage and accurate classification of findings.Compliance with InfoSec standards and exception approval processes.Security Vulnerability Remediation AnalystThis is a high-level application security position focused on securing software systems.The ideal candidate has a deep understanding of application security concepts and extensive experience with vulnerability scanning and analysis.The role requires strong analytical and problem-solving skills, as well as excellent communication and collaboration abilities.The successful candidate will have a proven track record of delivering high-quality work in a fast-paced environment and will be passionate about staying up-to-date with emerging threats and technologies.Responsibilities include:Reviewing and analyzing vulnerability scans to identify potential security risks.Documenting and tracking remediation efforts to ensure timely resolution of identified issues.Collaborating with development teams to implement secure coding practices and address identified vulnerabilities.Maintaining knowledge of industry-standard security frameworks and regulations to ensure compliance.We offer a competitive salary and benefits package, as well as opportunities for professional growth and development in a dynamic and innovative company.If you are a motivated and detail-oriented individual with a passion for application security, we encourage you to apply for this exciting opportunity.We look forward to reviewing your application],