Application Security Engineer

Qualifications:

• Relevant BS/BA degree and/or equivalent education/work experience in software system analysis and development
• Proven ability to work collaboratively and constructively with IT teams, including development, quality, support, and infrastructure, to produce high-quality software products
• Experience in understanding, capturing, and documenting technical and functional system requirements to meet business needs and expectations
• Experience with multiple application and database development toolsets and methodologies, especially Microsoft technologies
• Experience with software development life cycle concepts, practices, techniques, and procedures
• Excellent written and verbal communication skills and demonstrated ability to effectively communicate with staff, co-workers, management, and external personnel
• Excellent analytical, interpretive, problem-solving, and evaluative skills for decision making
• Excellent organizational, reporting, and time management skills
• Demonstrated customer-service orientation and attitude
• Demonstrated ability in creative thinking, self-direction, and initiative
• Demonstrated ability to thrive in a dynamic and high-pressure environment
• Willing to work extended hours and weekends and travel occasionally
• Foster the AMERISAFE culture by embracing the pillars of consistency, focus, frugality, ownership and service

• Participate in and support a highly collaborative development environment
• Collaborate with cross-functional teams to design, develop, and implement application security and delivery solutions that ensure the confidentiality, integrity, and availability of critical applications and services
• Develop automation to streamline network and application deployment, configuration, and maintenance tasks
• Implement and manage Web Application API Protection and Web Application Firewall solutions to safeguard web applications and APIs from threats and vulnerabilities
• Conduct requirements gathering and documentation through investigation of existing software systems, observation of current business processes, and interviews with company staff
• Analyze, plan, design, develop, code, and debug new software systems as well as enhancements to legacy systems according to specified requirements
• Evolve and standardize cybersecurity reference architectures for new systems and applications covering on-prem, SaaS, IaaS, and PaaS
• Create performance metrics to measure the effectiveness of new and existing cybersecurity capabilities, tools, and services
• Identify and report risks and evaluate opportunities associated with software systems and other technology solutions
• Support and adhere to established IT and Company policies, procedures, standards, and controls
• The position may require additional duties to be assigned.