Be aware of scams on social media involving phony job postings. Learn more


Application Security Engineer

Multiple Locations: Newark, NJ, USA • Charlotte, NC, USA • Seattle, WA, USA • Denver, CO, USA • Atlanta, GA, USA • Chicago, IL, USA • Boston, MA, USA

Notice

This position is no longer open.

Requisition Number: 213750

External Description:

Our Company 

Teradata is the connected multi-cloud data platform for enterprise analytics company. Our enterprise analytics solve business challenges from start to scale. Only Teradata gives you the flexibility to handle the massive and mixed data workloads of the future, today. 

The Teradata Vantage architecture is cloud native, delivered as-a-service, and built on an open ecosystem. These design features make Vantage the ideal platform to optimize price performance in a multi-cloud environment. 

Our Team 

The Application Security team is an integral part of Teradata Global Security and closely partners and guides Product Engineering security. We integrate and support security at every phase of the software development lifecycle (SDLC) and work closely with developers to ensure applications are secure from inception through release. Given Teradata’s large portfolio of analytic applications, we are pushing the boundaries of security by automating source code analysis, and analytic security. Our expertise lies in deep technical understanding of security and our application security engineers within Teradata. The Application Security team is tasked with enabling software developers to build secure applications and products through automating security (Shifting Left). 

Application Security Engineer 

Job Responsibilities: 

  • Serve as the security subject matter expert around Application Security topics, processes, and tools 
  • Partner with Product Engineering to improve security and quality within the software development lifecycle (SDLC) 
  • Integrate SAST, SCA, DAST, IaC, and Container scanning into CI/CD pipelines 
  • Interpret SAST, SCA, DAST, IaC, and Container scanning analysis tools results, and penetration test results and describe issues and fixes to non-security experts 
  • Train developers in various aspects of security to include secure coding, security requirements, SAST, SCA, DAST, IaC, and Container scanning security tools, etc. 
  • Manual and automated review of software code to enable software engineers to prioritize remediation of security vulnerabilities 
  • Provide vulnerability remediation guidance and mentoring to product development software engineers 
  • Review, analyze, and evaluate both internally developed software and vendor products and procedures to address security requirements 
  • Identify and automate security processes and practices 
  • Evaluation of new technologies, tools, and/or development techniques that impact Application Security 
  • Ability to reason about security decisions 

 

Job Skills: 

  • Understand Application Security practices and operations 
  • Ability to communicate effectively with business representatives in explaining security topics clearly and where necessary, in layman's terms 
  • General understanding with SAST, SCA, DAST, IaC, and Container analysis tools 
  • Ability to interpret SAST, SCA, DAST, IaC, and Container analysis results, and penetration test results and describe issues and fixes to non-security experts 
  • Knowledge on how to exploit and remediate the OWASP Top Ten (v2021)  
  • A deep understanding of web application and API vulnerabilities 
  • Familiarity with one or more cloud environments such as AWS, Azure, and/or Google Cloud 
  • Ability to automate tasks using Python, Bash, or Go 
  • An understanding of one or more programming languages such as Java, C, C++, JavaScript, Typescript, SQL, Go, Python, etc. 
  • Understand Infrastructure as Code (IaC) languages such as Terraform, CloudFormation, Helm, Ansible, etc. 
  • An understanding of HTTP and SSL/TLS protocols, and Web applications 
  • An understanding of CI/CD processes and tools 
  • An understanding of compliance requirements such as PCI-DSS & FedRAMP 

 

Education: 

  • Knowledge of core application security principles, common security vulnerability classes, their root causes, and mitigations 
  • MS/BS degree in Electrical Engineering, Computer Science, Information Technology, or related field. Advanced degree highly preferred 

CountryEEOText_Description: Teradata invites all identities and backgrounds in the workplace. We work with deliberation and intent to ensure we are cultivating collaboration and inclusivity across our global organization. ​ We are proud to be an equal opportunity and affirmative action employer. We do not discriminate based upon race, color, ancestry, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related conditions), national origin, sexual orientation, age, citizenship, marital status, disability, medical condition, genetic information, gender identity or expression, military and veteran status, or any other legally protected status.

City: Newark

State: New Jersey

Community / Marketing Title: Application Security Engineer

Job Category: Engineering

Company Profile:

Our Company

At Teradata, we believe that people thrive when empowered with better information. That’s why we built the most complete cloud analytics and data platform for AI. By delivering harmonized data, trusted AI, and faster innovation, we uplift and empower our customers—and our customers’ customers—to make better, more confident decisions. The world’s top companies across every major industry trust Teradata to improve business performance, enrich customer experiences, and fully integrate data across the enterprise.

LinkedIn Remote: #LI-Remote

Location_formattedLocationLong: Newark, New Jersey US

.

© 2023, Teradata. All rights reserved. | Privacy | Terms of Use | Fraud Alert | Tracking Consent | Teradata is an Equal Opportunity Employer | www.teradata.com