Staff Application Security Engineer
New
United StatesFull-TimeStaff
Salary177,300 - 265,900 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 7+ years in information security and 3+ years in software development.
- Required Skills
- AWSPythonJavaJavascriptKubernetesC++CI/CD
Requirements
- 7+ years in information security and 3+ years in software development.
- Bachelor’s degree or equivalent in Computer Science, Information Security, or related field.
- Effective communication and leadership abilities.
- Deep understanding of enterprise and cloud-native architectures and their secure design.
- Expertise in network and web protocols (TCP/IP, TLS, HTTPS, OAuth 2.0, OpenID Connect) and common attack vectors.
- Proven expertise in guiding security development and code evaluations.
- Skilled in multiple programming languages (e.g., Java, C/C++, JavaScript, Python) and mitigating vulnerabilities such as OWASP Top 10.
- Experience integrating SAST, DAST, and dependency scanning into CI/CD pipelines.
- Familiar with Agile, DevOps, and modern delivery practices.
- Hands-on experience with cloud technologies (AWS, Azure, GCP, Kubernetes, service mesh, CDN).
Responsibilities
- Lead security initiatives across the SDLC and improve development practices through scalable automation.
- Conduct and guide threat modeling and security requirements early in design phases.
- Partner with developers, architects, and product managers to align business goals with security needs.
- Lead security architecture and code reviews for distributed systems.
- Perform hands-on testing to identify risks and drive remediation with vulnerability and incident response teams.
- Advance the Product Security strategy through multi-functional initiatives and cultural influence.
- Balance business and security risks through technically grounded, pragmatic recommendations.
- Translate lessons learned into reusable organizational assets that enhance overall security posture.
- Mentor engineers and practitioners, promoting secure-by-default thinking and shared accountability.
- Demonstrate proactive leadership, coordinating teams to deliver measurable security and business impact.
View Full Description & ApplyYou'll be redirected to the employer's site
