×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Quality Engineer - Application Security - Costco

Job in Issaquah, King County, Washington, 98027, USA
Listing for: Costco Wholesale Corporation
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below
Position: Quality Engineer - Application Security - Costco Travel
Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in fourteen countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed.

This is an environment unlike anything in the high-tech world and the secret of Costco's success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy.

The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others.

Come join the Costco Travel IT family. Costco IT is a dynamic, fast-paced environment, working through exciting transformation efforts. We are building the next generation retail environment where you will be surrounded by dedicated and highly professional employees.

Quality Engineers are core delivery team members responsible for the validation of functional and non-functional requirements implemented by a team. They are responsible for decomposing the functional and technical requirements created by Product Owners and Systems Analysts into test scripts. Quality Engineers raise defects as issues are identified and support the remediation process with teams.

The Application Security Engineer will work closely with stakeholders in Security, Engineering, Dev Ops, and other leaders within Costco Travel. The Engineer will be responsible for the overall security of our applications and services/APIs. This role has specific focuses on application security, vulnerability scanning, vulnerability scan outputs, and the tools and methodologies used.

This Engineer will identify gaps and inefficiencies within the vulnerability management program, and will work with the team to implement solutions. The Engineer will ensure security best practices are enforced. They will mentor team members and provide consultative services to teams and stakeholders to ensure the security of our applications.

If you want to be a part of one of the worldwide BEST companies "to work for", simply apply and let your career be reimagined.

ROLE

● Serves as a subject matter expert for application security, vulnerability management, and vulnerability scanning.

● Supports and consults with product and development teams in the area of application security.

● Assesses applications for vulnerabilities in web UIs and APIs.

● Provides manual application secure code reviews.

● Works analytically to solve both tactical and strategic problems within the vulnerability management program.

● Identifies attack surface reduction opportunities through vulnerability data analysis from enterprise custom and COTS applications.

● Collaborates and communicates with Compliance, External auditors, and Business teams.

● Understands compliance requirements that may impact security, and effectively collaborates with business areas and project teams to develop security solutions that address requirements.

● Advocates for compliance and security measures, both internally and externally, to protect corporate applications and environments.

● Maintains current knowledge of industry trends and standards; proactively pursues professional growth in the areas of technology, business knowledge, and Costco policies and platforms.

● Regular and reliable workplace attendance at your assigned location.

REQUIRED

● 4+ years' experience in security in an enterprise environment.

● 2+ years' experience with software development with Java or any other Object-Oriented Language.

● Knowledgeable in remediation activities at the code or script level, including fixing vulnerabilities or defects.

● Demonstrated experience with Java programming, development practices, and common bug patterns.

● Familiar with application vulnerability/security frameworks and standards such as OWASP Top 10, SANS Top 20, CVE,

● CWE, CVSS, etc.

● Experience with vulnerability management processes…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search