Sr Application Security Engineer (Pen Tester)

The Senior Security Engineer's primary role is to lead application security architecture and design reviews, collaborating closely with development teams to mitigate application security risks. This engineer will contribute to the internal penetration testing program, using offensive security techniques to assess application security. The ideal candidate will demonstrate an offensive mindset and recommend practical mitigation strategies. Key contributions include leading application security architecture reviews, performing threat modeling, conducting security assessments and secure code reviews, and enhancing the internal penetration testing program. The role involves integrating secure coding practices into CI/CD workflows, refining security testing frameworks, and staying updated on emerging threats. Educating product teams on security best practices and assisting in forensic investigations are also required. Detailed security reports with risk analysis and remediation strategies will be prepared and presented.