Senior Lead Application Security Engineer

As a Lead Application Security Engineer at Baker Hughes Power, you will be part of the Digital Technology team driving the digital transformation of the business. Your role will involve leading key application security programs, ensuring adherence to secure development standards, and guiding teams on application vulnerability remediation. You will collaborate with business segment cyber security teams, drive best practices through the Secure Software Development Lifecycle, educate teams on secure development methodologies, and participate in code reviews to ensure secure coding practices. Key Responsibilities: - Lead key application security programs, including Container Security implementation - Collaborate with business segment cyber security teams on application security technology adoption - Drive best practices and sound design principles through the Secure Software Development Lifecycle - Educate teams across Baker Hughes Power on secure development best practices, tools, and methodologies - Participate in code reviews across teams to ensure secure coding practices - Manage projects to drive the assessment, operationalization, and adoption of new technologies, platforms, tools, and frameworks Qualifications Required: - Bachelor's Degree in Computer Science or STEM Majors with a minimum of 10 years of professional experience - Working knowledge of application security services such as SAST, SCA, DAST, and Container Security - Experience managing or deploying Container Security solutions - Knowledge of OWASP Web/API vulnerabilities and compensating controls (CSRF, XSS, SQLI, etc.) - Experience with Java, NodeJS, Go, PHP, Python, Ruby - Software development cycle and automated application security testing experience - Working knowledge of source control tools such as GitHub or Azure DevOps - Experience with Application Security solutions such as BlackDuck, Checkmarx, Prisma Container Security - Technical Expertise in development background, API Security Architecture, and Cloud Provider security architecture design patterns In addition to the above responsibilities and qualifications, Baker Hughes values a diverse and inclusive work environment. The company invests in the health and well-being of its workforce, provides comprehensive private medical care options, and offers tailored financial programs. Join Baker Hughes to be part of a team that values innovation, development, and pushing boundaries in the energy sector. As a Lead Application Security Engineer at Baker Hughes Power, you will be part of the Digital Technology team driving the digital transformation of the business. Your role will involve leading key application security programs, ensuring adherence to secure development standards, and guiding teams on application vulnerability remediation. You will collaborate with business segment cyber security teams, drive best practices through the Secure Software Development Lifecycle, educate teams on secure development methodologies, and participate in code reviews to ensure secure coding practices. Key Responsibilities: - Lead key application security programs, including Container Security implementation - Collaborate with business segment cyber security teams on application security technology adoption - Drive best practices and sound design principles through the Secure Software Development Lifecycle - Educate teams across Baker Hughes Power on secure development best practices, tools, and methodologies - Participate in code reviews across teams to ensure secure coding practices - Manage projects to drive the assessment, operationalization, and adoption of new technologies, platforms, tools, and frameworks Qualifications Required: - Bachelor's Degree in Computer Science or STEM Majors with a minimum of 10 years of professional experience - Working knowledge of application security services such as SAST, SCA, DAST, and Container Security - Experience managing or deploying Container Security solutions - Knowledge of OWASP Web/API vulnerabilities and compensating controls (CSRF, XSS, SQLI, etc.) - Experience with Java, NodeJS, Go, PHP, Python, Ruby - Software development cycle and automated application security testing experience - Working knowledge of source control tools such as GitHub or Azure DevOps - Experience with Application Security solutions such as BlackDuck, Checkmarx, Prisma Container Security - Technical Expertise in development background, API Security Architecture, and Cloud Provider security architecture design patterns In addition to the above responsibilities and qualifications, Baker Hughes values a diverse and inclusive work environment. The company invests in the health and well-being of its workforce, provides comprehensive private medical care options, and offers tailored financial programs. Join Baker Hughes to be part of a team that values innovation, development, and pushing boundaries in the energy sector.