Legal Staff Information Technology in New Albany, IN

Law Firm

New Albany, IN

Legal Staff Information Technology in New Albany, IN

Legal Staff

3-5 yrs required

No

Senior Application Security Engineer - Join Morgan & Morgan, the leading personal injury law firm, in the fight for consumer rights. We are seeking a motivated and experienced Senior Application Security Engineer to join our Cybersecurity Team. This is a full-time position with excellent benefits and the opportunity to work remotely from any of our offices in the .

H1: Join Morgan & Morgan as a Senior Application Security Engineer
H2: Protect Consumer Rights with the Leading Personal Injury Law Firm

- Salary: Competitive and commensurate with experience
- Job title: Senior Application Security Engineer
- Experience: 3-5 years in a similar role
- Location: Remote, with offices in Jacksonville, Orlando, and Tampa, Florida
- Company: Morgan & Morgan, the leading personal injury law firm
- Mission: For the People - fighting against insurance companies, large corporations, and defective goods
- Team: Over 3,000 employees united by a common goal
- Culture: Motivated, curious, and dedicated to justice
- Benefits: Competitive salary, medical and dental insurance, 401(k) plan, paid time off, and paid holidays
- Equal Opportunity: All employees and applicants are treated equally and without discrimination or harassment
- E-Verify: Participates in E-Verify to confirm eligibility to work in the .
- Privacy Policy: Available for review on our website

Responsibilities:

- Conduct threat modelling and risk analysis to identify exposure and develop mitigation plans
- Align security goals with business objectives by working with DevOps, QA, and product teams
- Define and implement security standards and best practices for applications and APIs
- Collaborate with development teams to ensure secure design patterns and practices
- Conduct vulnerability assessments and penetration testing
- Act as a subject matter expert on emerging threats and secure coding techniques
- Perform code reviews and recommend mitigations
- Integrate security into the SDLC process
- Establish metrics and reporting for ongoing security efforts

Requirements:

- Working knowledge of current web and application security standards and best practices
- Deep experience securing applications and APIs on AWS, Azure, or GCP
- Hands-on experience with modern API security, including REST and GraphQL APIs
- Recent experience with security testing tools such as SAST, DAST, IAST, and RASP
- Proficiency securing applications and APIs on cloud platforms
- Excellent communication skills for effectively conveying business risk from cybersecurity issues
- Successful experience developing, implementing, and maintaining security policies, standards, and procedures
- Proven track record of threat modelling, security code reviews, and penetration testing
- Demonstrable programming experience in Python, TypeScript, and C#
- Agreement to obtain relevant certifications within six months of hire
- Trust, dignity, integrity, and accountability are core values
- Self-motivated, ambitious, and action-oriented

Certifications:

- AWS Certified Security – Specialty or AWS Certified Solutions Architect – Associate preferred
- Any one of the five Offensive Security certifications such as OSCP
- ISC CSSLP – Certified Secure Software Lifecycle Professional
- EC-Council – CEH Certified Ethical Hacker (Master level)

Join our team at Morgan & Morgan and make a difference in the lives of millions of Americans. We are dedicated to protecting the people and fighting for consumer rights. Apply now to join our Cybersecurity Team as a Senior Application Security Engineer and help us continue to be the last line of defense against insurance companies, large corporations, and defective goods.