Senior Application Security Engineer

Allied Solutions LLC

$100K — $130K *
Carmel, IN 46032In-Person
Information Technology
8 - 10 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Bachelor’s degree or equivalent experience required; Master’s preferred
  • 8-10 years of relevant experience
  • Certification in ISC² CCSLP is mandatory
  • Recommended certifications include GIAC GWAPT, OSWE, GCSA, CCSP, and CGRC
  • Deep understanding of secure software development methodology

Responsibilities

  • Facilitate threat modeling workshops during application design phases
  • Conduct secure code reviews and static analysis of codebases
  • Guide vulnerability remediation planning for identified security issues
  • Integrate various AppSec tools into CI/CD pipelines
  • Collaborate with DevOps to embed security in deployment processes
  • Develop secure coding examples and remediation guidance for developers
  • Provide mentorship to junior AppSec team members

Benefits

  • Opportunities for professional development and training
  • Cross-functional teamwork and collaboration
  • Access to cutting-edge security tools and technology
  • Supportive work environment fostering security awareness
  • Focus on proactive risk management and security education
Full Job Description
The Senior Application Security Engineer works closely with development teams to embed security practices across the SDLC. This role leads secure design reviews, conducts code-level assessments, integrates security automation into pipelines, and coaches developers on secure coding standards. The Senior AppSec Engineer partners cross-functionally to proactively manage software security risks.

Job Duties and Responsibilities:

Technical Assessment and Security Review – 35%

  • Facilitate threat modeling workshops during application design phases.
  • Conduct secure code reviews and static analysis of internally developed codebases.
  • Guide vulnerability remediation planning for application security findings.

Secure Development and CI/CD Integration – 30%

  • Integrate AppSec tooling (SAST, SCA, DAST, secrets scanning, IaC scanning) into CI/CD pipelines.
  • Collaborate with DevOps teams to embed security testing within deployment pipelines.
  • Develop proof-of-concept secure coding examples and remediation guidance for developers.

Security Standards, Threat Intelligence, and Documentation – 20%

  • Monitor emerging application threats and recommend control adjustments.
  • Maintain security standards documentation and coding guidelines.

Mentorship and Compliance – 15%

  • Provide mentorship to junior AppSec team members.
  • Support regulatory compliance reviews related to application development.

Qualifications (Education, Experience, Certifications & KSA):
  • Bachelor’s degree or equivalent combination of education and experience required.
  • Master’s degree preferred.
  • 8-10 years of work-related experience required.

Required Certification:

  • ISC² CCSLP (Certified Secure Software Lifecycle Professional)

Optional / Recommended Certifications:

  • GIAC GWAPT (GIAC Web Application Penetration Tester) – if not already obtained
  • Offensive Security OSWE (Offensive Security Web Expert)
  • GIAC GCSA (GIAC Cloud Security Automation)
  • ISC² CCSP (Certified Cloud Security Professional)
  • ISC² CGRC (Certified in Governance, Risk and Compliance)

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, skills, efforts or working conditions associated with a job.

* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Allied Solutions LLC

More Information Technology Jobs

Find similar Senior Application Security Engineer jobs:

NationwideCarmel, IN