Application Security Engineer

As the Application Security Engineer, you will play a pivotal role in the strengthening of security into our Software Development Lifecycle. This is a critical role within the Information Security organization to safeguard an environment where code changes can happen rapidly. You will build security control testing at scale while balancing risk reduction, adopting threat modeling as part of our internal processes. You will collaborate with development and product teams to integrate security solutions into business-critical applications, conduct threat modeling sessions using industry-standard methodologies, and partner with DevSecOps to develop, design, implement and manage application security integration and automation within CI/CD. You will also evaluate, implement, and manage AppSec tools, build scalable, automated vulnerability management workflows and reports, lead scoping and develop requirements for manual penetration testing, participate in secure code reviews and product security testing, and work closely with compliance teams to ensure applications adhere to regulations.