Packsize International

Application Security Engineer

Packsize International$100K — $130K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10+ years of security-related experience, with at least 5+ years in application security or software security engineering.
  • Deep experience embedding security practices in the software development lifecycle.
  • Proficient in secure coding practices and application vulnerability scanning.
  • Experience securing operational technology (OT) and machine software environments.
  • In-depth knowledge of cloud security best practices, especially for SaaS or IoT products.
  • Strong background in security assessments and risk analysis.
  • Familiar with compliance requirements (GDPR, SOX) and security frameworks (SOC2, ISO, NIST).
  • Excellent interpersonal skills for influencing and educating stakeholders.

Responsibilities

  • Embed with software engineering teams to advocate for security by design.
  • Drive adoption of automated security tools in the development lifecycle.
  • Conduct threat modeling, code reviews, and vulnerability assessments.
  • Lead security initiatives for application and machine software improvements.
  • Serve as a subject matter expert in cross-functional forums on secure coding and architecture.
  • Collaborate on security policy creation and secure SDLC standards.
  • Identify and prioritize application security risks and develop remediation strategies.

Benefits

  • Hybrid remote work options available.
  • Equal opportunity employer promoting diverse workforce.
  • Encouragement for applicants from all backgrounds and experiences.
  • Reasonable accommodations for qualified individuals with disabilities.
Full Job Description
Job Description:
Job Title: Application Security Engineer

About the Role
Packsize is seeking an experienced Application Security Engineer to champion secure software development across our technology stack. You will collaborate closely with development and product teams to integrate robust security practices into every stage of our SDLC, ensuring that security is a foundational element of our technology solutions and product innovations.


What You'll do:
  • Embed with software engineering teams to guide the secure design, development, and deployment of applications, advocating for "security by design."
  • Drive the adoption of automated security tools and processes within the software development lifecycle to detect and remediate vulnerabilities early.
  • Conduct threat modeling, code reviews, and vulnerability assessments for web, cloud, and OT (Operational Technology) applications and services.
  • Lead security initiatives targeting improvements in Packsize's application and machine software environments.
  • Serve as a subject matter expert for application security within cross-functional forums, providing clear guidance on secure coding, secure architecture, and best practices.
  • Collaborate on the creation, maintenance, and communication of security policies and secure SDLC standards, ensuring alignment with industry regulations and compliance mandates.
  • Identify, assess, and prioritize application security risks and work with engineering and business leaders to develop effective remediation strategies.
  • Assess third-party and open-source dependencies for security risks, ensuring that vendor and supply chain security meet Packsize standards.
  • Respond to security incidents involving applications, lead root cause analyses, and drive post-incident improvements.
  • Perform regular security testing, such as SAST, DAST, and penetration testing, to validate the security of applications.
  • Provide expert input on cryptography and key management for applications, ensuring robust protection of data in transit and at rest.
  • Evaluate and recommend new security solutions and tools to continually improve Packsize's application security posture.
What You'll Bring:
  • 10+ years of security-related experience, with at least 5+ years in an application security or software security engineering role.
  • Deep experience working with software development teams to embed security practices into the software development lifecycle and release processes.
  • Technical proficiency in secure coding practices, application vulnerability scanning, and remediation.
  • Experience securing OT (Operational Technology) and machine software environments, especially challenges like remote device deployment and secure firmware/software delivery.
  • In-depth knowledge of cloud security best practices and architecture, especially for SaaS or IoT products.
  • Demonstrated experience delivering and implementing technical security solutions for complex application environments.
  • Strong background conducting security assessments, risk analyses, and security testing for applications.
  • Familiarity with compliance requirements (GDPR, SOX) and security frameworks (SOC2, ISO, NIST) as they relate to application development and deployment.
  • Excellent interpersonal skills; able to influence, educate, and partner with technical and business stakeholders at all levels.
  • Passion for mentoring developers on secure coding and application security best practices.
Working Environment and Physical Demands
  • Able to commute to Packsize Headquarters; hybrid remote work available.
  • Office-based work environment; ability to sit for extended periods and move about the office as needed.
  • Periodic remote work; comfortable with a hybrid office setting.
  • Ability to travel up to 15%, including international travel.

What We Offer

Packsize considers several factors when determining compensation when
extending a job offer, including but not limited to, the role being offered, the
associated responsibilities, the candidate's prior work experience,
education/training, and any special skills.
If this role excites you but you don't meet each requirement listed, we
encourage you to apply anyway. At Packsize, we welcome applicants of all
backgrounds and experiences and understand that the best candidates may
come from the most unlikely of places.

About Packsize International

Packsize International is a packaging technology company that provides custom packaging solutions for businesses. The company's products include custom box-making machines, software, and services that help businesses reduce their packaging waste and shipping costs. Packsize International was founded in 2002 and is headquartered in Salt Lake City, Utah. The company has operations in North America, Europe, and Asia, and serves customers in a variety of industries, including e-commerce, retail, and manufacturing. Packsize International is committed to sustainability and has developed a number of initiatives to reduce its environmental impact, including using recycled materials in its products and reducing its carbon footprint.
Learn more about Packsize International
Size
500 employees
Industry

Similar Jobs

More Jobs at Packsize International

More Information Technology Jobs

Find similar Application Security Engineer jobs: