1. Home
  2. Application Security Engineer
Expires soon
EBay

Application Security Engineer

  • San Jose (Santa Clara County)
  • Infra / Networks / Telecom
Apply Now

Job description

Primary Job Responsibilities

eBay Inc. (NASDAQ: EBAY) is a global commerce leader providing a robust platform where merchants of all sizes can compete and win. We also reach millions through specialized marketplaces such as StubHub, the world's largest ticket marketplace, and eBay classifieds sites, which together have a presence in more than 1,000 cities around the world. Working together, the unique companies that form eBay Inc. create opportunities for people around the world that often transform their lives. We serve community members, not customers. And our community begins here. eBay employees are committed to a belief in personal growth, collaboration, and the chance to make a difference every day. For more information about the company and its global portfolio of online brands, visit www.ebayinc.com.

SENA is the Security Engineering and Network Assessment which is an integral part of the Global Information Security(GIS) group at eBay Inc.
SENA is responsible for ensuring Application Security for eBay Inc and its subsidiaries. Our role is to architect and implement solutions at each phase of the Secure Product Lifecycle (SPLC).

Job Requirements

This position is for a Technical Security Analyst. Automation and API level testing skills are required. As an Application Security Analyst Intern, you will partner with Software Developers, Product Managers, Information Security and Quality Engineers to:

·  Perform vulnerability assessments and penetration testing/ethical hacking
·  Perform, review and analyze security vulnerability data to identify applicability and false positives
·  Proficiency with at least one Security tool like AppScan, Cenzic, WebInspect, Paros is desired
·  Programming experience in either Java/J2EE, Perl, Python, NodeJS, Rest API is a must
·  Research and develop security tools, techniques, automation and process improvements
·  Work on integrating development/Quality tools with security tools
·  Create risk based security code reviews (static & dynamic)
·  Conduct penetration testing in line with Open Web application Security project (OWASP) standards
·  Publish reports and test results in line with scanners and test cases to stakeholders
·  Organize and execute regression audits for applications
·  Handhold development teams for vulnerability remediation with sample code snippets

Education

BSCS or BSEE or Other Related 4yr Technical Degree

Job Title

Information Security Engineer 2

Removal Date

03-Nov-2017

Make every future a success.
  • Job directory
  • Business directory
    •