Staff Developer / Development Manager, Application Security - atVenu

Key Responsibilities

• Architect and enforce secure coding standards across all development teams, ensuring compliance with PCI Level 1 and SOC 2 requirements.
• Lead threat modeling workshops and risk assessments for new and existing features, translating findings into actionable mitigation plans.
• Coordinate and conduct regular penetration tests, vulnerability scans, and code reviews, reporting findings to stakeholders and tracking remediation.
• Develop and maintain security tooling and CI/CD pipelines that integrate automated security checks and compliance checks.
• Collaborate with product, architecture, and operations teams to embed security into the entire software development lifecycle.

Requirements

• 10+ years of software development experience with a strong focus on application security.
• Deep expertise in PCI Level 1 and SOC 2 frameworks, including audit preparation and remediation.
• Proven experience with secure coding practices, threat modeling, and penetration testing tools (e.g., Burp Suite, OWASP ZAP).
• Hands‑on knowledge of DevSecOps principles and CI/CD security automation.
• Excellent communication skills and ability to influence cross‑functional teams.