Application Security Engineer
Current• Responsible for the application security of both the cloud-based SaaS and On-Prem products for Laserfiche. This includes the development of a standardized security policy that defines the remediation times, escalation procedures, and release requirements in accordance with regulatory requirements.• Review new and existing software releases for common vulnerabilities and architectural flaws through the use of STRIDE threat modeling. • Manage SAST, DAST, and SCA scan results for potential security issues and work with development to identify false positives, or develop mitigations that reduce the potential risk of any findings.• Collaborate with engineering and product management to develop a successful roadmap for both software releases and the implementation of a mature product security program.