Senior Application Security Engineer
2 days ago
Description
• Lead the implementation and operationalization of SAST, SCA, and DAST tools across multiple business units with varying tech stacks. • Collaborate with development teams to provide guidance on secure coding practices and consult on remediation efforts for vulnerabilities. • Develop and maintain an application security vulnerability management program, ensuring critical and high vulnerabilities are remediated according to SLAs. • Conduct threat modeling exercises to identify potential threats and propose mitigations throughout the software development lifecycle. • Work closely with engineering teams to integrate security tools seamlessly into CI/CD pipelines and development workflows. • Create comprehensive documentation and training materials for secure development practices. • Perform security assessments, code reviews, and penetration testing as needed. • Track, report, and communicate the progress of application security initiatives to senior management. • Stay up to date with the latest security trends, vulnerabilities, and attack vectors to ensure continuous improvement of the security posture. • Support incident response activities by providing expertise in application security-related incidents.
Requirements
• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience). • 5+ years of experience in application security, with hands-on experience in secure coding, SAST, SCA, and DAST. • Proficiency in one or more programming languages such as Python, Java, JavaScript, or C#. • Experience building and managing vulnerability management programs specific to application security findings. • Demonstrated expertise in threat modeling and risk assessment processes. • Solid understanding of modern development frameworks and CI/CD practices. • Strong problem-solving, analytical, and communication skills. • Industry certifications such as OSCP, CEH, CISSP, or GWAPT are a plus.
Apply NowSimilar Jobs
2 days ago
Lead Security Operations at Vimeo, ensuring effective incident response and operational excellence in security controls.
🇺🇸 United States – Remote
💵 $165.6k - $251.5k / year
💰 $3G Private Equity Round on 2021-01
⏰ Full Time
🟠 Senior
👮♂️ Security Engineer
🦅 H1B Visa Sponsor
3 days ago
Lead and enhance cybersecurity governance program at FIS. Manage risks and oversee awareness initiatives.
🇺🇸 United States – Remote
💵 $167.8k - $281.9k / year
⏰ Full Time
🟠 Senior
👮♂️ Security Engineer
🦅 H1B Visa Sponsor
3 days ago
Manage extensive cybersecurity client programs at DeepSeas, ensuring successful execution and delivery. Work closely with executives to achieve expected outcomes.
3 days ago
Lead security initiatives for CVS Health's infrastructure. Manage teams ensuring confidentiality, integrity, and compliance.
3 days ago
Lead Workday Security & Governance at Otis, overseeing security configurations and audits. Deliver essential compliance and security solutions for HR functions.