Job Title

Senior Application Security Engineer Senior Application Security Engineer at CoStar Group will play a pivotal role in enhancing our Application Security practices, ensuring security is embedded throughout the software development lifecycle. You will work directly with development teams to guide and advise them on best practices and help drive the implementation and adoption of our Application Security Framework. Responsibilities Proactively embed security into the software development lifecycle by conducting implementation reviews of solution designs and leading threat modeling sessions. Lead efforts to integrate security into DevOps processes, promoting a culture of security awareness and ownership. Perform handson security code reviews and act as a key security advisor to development teams, providing guidance on addressing vulnerabilities and best practices. Manage and operate security tools, including those integrated into the CI/CD pipeline. Partner with Governance, Risk & Compliance (GRC) and Security Operations teams to ensure adherence to relevant regulations and industry standards, and collaborate on the investigation and response to security incidents. Experience and Education Minimum bachelor''s degree in relevant information and technology fields. 5+ years in a Product/Application Security or DevSecOps role. Strong knowledge of DevOps principles and practices, and security best practices. Strong problemsolving and communication skills. Collaborative, teamwork-oriented mindset. Proficiency in scripting and automation (e.g., Java, C/C++, C#, Python, JavaScript, PowerShell). Experience with container security (Docker, ECS, Kubernetes) and cloud security (AWS, Azure, or GCP). Preferred tertiary qualifications in Computer Science, Software Engineering, Cybersecurity or a related field. Relevant certifications (e.g., AWS Certified Security Specialty, GPEN, OSCP, OSCE) are highly desirable. Extensive experience and strong understanding of AWS services and cloud security controls, including IAM, KMS, VPC, Security Groups, AWS Inspector, Guard Duty, and SCPs. Equal Employment Opportunity CoStar Group is an Equal Employment Opportunity Employer; we maintain a drugfree workplace and perform preemployment substance abuse testing. CoStar is committed to creating a diverse environment and is proud to be an equal opportunity workplace and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. CoStar is also committed to compliance with all fair employment practices regarding citizenship and immigration status. If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access www.costargroup.com/careers as a result of your disability. You can request reasonable accommodations by calling 1-855-840-1715 or by sending an email to [email protected]. #J-18808-Ljbffr