Job Title:Lead Application Security Engineer (Remote, U.S.)
We are seeking a talented and experienced Lead Application Security Engineer to join our client's dynamic and innovative team. As the Lead Application Security Engineer, you will be responsible for overseeing the security of the company's applications and ensuring the confidentiality, integrity, and availability of their systems. This is a remote position, allowing you to work from anywhere in the United States.
Salary Range: $180,000 - $250,000 per year
Lead and manage a team of application security engineers, providing guidance, mentorship, and technical expertise.
Develop and implement comprehensive application security strategies, policies, and procedures to protect our client's company's applications and data.
Conduct regular security assessments, vulnerability testing, and code reviews to identify and remediate potential security vulnerabilities.
Collaborate with cross-functional teams, including developers, architects, and product managers, to integrate security best practices throughout the software development lifecycle.
Stay up-to-date with the latest security trends, technologies, and vulnerabilities, and provide recommendations for improving the security posture of their applications.
Act as the subject matter expert on application security, providing guidance and support to both technical and non-technical stakeholders.
Lead incident response efforts for application security incidents, investigating and resolving security breaches or vulnerabilities.
Conduct security training and awareness programs to educate developers and other team members on secure coding practices and security best practices.
Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
Proven experience as an Application Security Engineer or in a similar role, with a focus on web application security.
Strong knowledge of application security principles, secure coding practices, and common security vulnerabilities (e.g., OWASP Top 10).
Experience leading and managing a team of application security engineers.
Familiarity with industry standards and regulations such as ISO 27001, NIST, and GDPR.
Experience with application security testing tools and techniques, such as static analysis, dynamic analysis, and penetration testing.
Familiarity with cloud platforms and their security considerations (e.g., AWS, Azure, GCP).
Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
Relevant certifications such as CISSP, CSSLP, or GIAC certifications (e.g., GWAPT, GPEN) are preferred.
Apply now to find out more!