Senior Lead Application Security Engineer - IFS

Key Responsibilities

• Architect and enforce secure coding standards and secure design principles across multiple product lines.
• Lead threat modeling workshops and risk assessments for new and existing applications.
• Integrate automated security testing (static, dynamic, and dependency scanning) into CI/CD pipelines.
• Conduct and mentor penetration testing engagements, providing actionable remediation guidance.
• Collaborate with DevOps, Cloud, and Platform teams to embed security controls in cloud deployments.
• Develop and maintain security metrics, dashboards, and reporting for executive stakeholders.

Requirements

• 10+ years of experience in application security, with a proven track record in secure architecture and design.
• Deep knowledge of OWASP Top 10, secure coding practices, and threat modeling frameworks.
• Hands‑on experience with static and dynamic analysis tools, container security, and cloud security (AWS, Azure, GCP).
• Strong scripting skills (Python, Bash) and familiarity with CI/CD tools (Jenkins, GitHub Actions, GitLab CI).
• Excellent communication skills and ability to influence cross‑functional teams.