Lead Application Security Engineer - adaptivesecurity

Key Responsibilities

• Architect and enforce secure application design principles across the product portfolio.
• Lead threat modeling workshops and vulnerability assessments for new and existing features.
• Define and maintain secure coding guidelines, OWASP top‑10 mitigations, and automated security testing pipelines.
• Collaborate with DevOps and platform teams to integrate security controls into CI/CD and cloud infrastructure.
• Mentor engineering teams on secure development practices and conduct code reviews with a focus on security.

Requirements

• 5+ years of experience in application security, with a proven track record in secure architecture and threat modeling.
• Hands‑on expertise in penetration testing, vulnerability analysis, and secure coding (Java, Python, Node.js).
• Strong knowledge of OWASP standards, secure design patterns, and cloud security best practices (AWS, Azure, GCP).
• Excellent communication skills and ability to influence cross‑functional teams.
• Experience with security automation tools (SAST, DAST, SCA) and CI/CD integration is a plus.