Application Security Engineer

Job Description:

Global IT (GIT) Engineering team is seeking an Application Security Engineer to join a goals-oriented team to make an immediate difference while learning a blend of cutting-edge Cloud, DevSecOps, Agile and industry standard skills. The applicant must be driven, curious, reliable, collaborative, and eager to constantly improve their craft. The role is part of a team that develops applications, services, and solutions across the entire GIT enterprise.

Individual contributor that works under limited supervision; applies subject matter knowledge; requires a capacity to understand specific needs or requirements to apply skills/knowledge.

What You'll Do:

• Highly motivated, creative, self-directed, and thrives in fast-paced, dynamic environment

• The passion and drive to look for application security defects

• Participate in and support application security reviews and threat modeling, including code review and dynamic testing

• Assist the Global Cybersecurity team in the bug bounty program

• Assist in driving the secure coding training

• Assist development teams in consultation in secure coding and vulnerability remediation

What You'll Need:

• Bachelor’s degree, preferably Computer Science, or equivalent work experience

• 3+ years’ professional experience

• Web and Mobile Application Security experience

• Experience using SAST/DAST/Pen Testing tools

• Ability to explain vulnerabilities in the OWASP Top 10 to relevant stakeholders and discuss ways to remediate it.

• Solid understanding of Git-based version control

• Exposure to accessing REST APIs and web services

• Preferred Skills/Experience

• Understand DevSecOps best practices

• CI/CD tools – Bitbucket, Github, Bamboo, Terraform

• Cloud technologies including Azure or Amazon Web Services (AWS)

Skills:

Threat and Vulnerability Management; Git; Microsoft Azure; Application Security; Bitbucket; Cybersecurity; Penetration Testing; Threat Modeling

Our Purpose and Growth Culture:

We are taking deliberate action to nurture an inclusive culture that is grounded in our company purpose, to refresh the world and make a difference. We act with a growth mindset, take an expansive approach to what’s possible and believe in continuous learning to improve our business and ourselves. We focus on four key behaviors – curious, empowered, inclusive and agile – and value how we work as much as what we achieve. We believe that our culture is one of the reasons our company continues to thrive after 130+ years. Visit Our Purpose and Vision to learn more about these behaviors and how you can bring them to life in your next role at Coca-Cola.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class. When we collect your personal information as part of a job application or offer of employment, we do so in accordance with industry standards and best practices and in compliance with applicable privacy laws.