CybersecurityJobs.io
← Back to all jobs

Job Description

The Lead Application Security Engineer drives secure software development practices and provides hands-on technical leadership across the application portfolio, embedding security throughout the SDLC. This hybrid role is based in Scottsdale, AZ.

Position Overview

In this role, you will guide secure software development practices, provide technical leadership across the application landscape, and ensure security is integrated from design through delivery. Located in Scottsdale, AZ, the position follows a hybrid schedule with four days onsite and one day remote.

Responsibilities

  • Lead application security assessments, vulnerability management, and remediation efforts across enterprise applications.
  • Perform and interpret SAST, DAST, and SCA scans using tools such as Veracode, Checkmarx, Fortify, or equivalent platforms.
  • Identify, prioritize, and drive remediation of security vulnerabilities, providing guidance on secure coding practices.
  • Design and implement security controls for REST APIs, including authentication, authorization, input validation, and data protection.
  • Develop security standards, policies, and best practices aligned with OWASP and industry frameworks.
  • Produce risk assessments, vulnerability reports, and executive-level security metrics.
  • Participate in architecture and design reviews to proactively identify and mitigate security risks.
  • Evaluate AI-generated code and leverage AI-assisted security tools to improve security operations and developer productivity.
  • Support compliance, audit, and regulatory security requirements.
  • Provide technical leadership for application design, development, and delivery.
  • Serve as a hands-on contributor, developing and reviewing code across Java, Spring Boot, Angular, and Microservices architectures.
  • Establish engineering standards that promote high-quality, secure, and maintainable software.
  • Guide architecture decisions, system integrations, and application modernization initiatives.
  • Collaborate with stakeholders to translate business requirements into scalable technical solutions.
  • Mentor and coach development teams on secure coding, software design, and engineering best practices.
  • Drive continuous improvement in application quality, performance, reliability, and security.

Requirements

  • Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
  • 5+ years of Application Security experience, including vulnerability assessment and remediation.
  • 7+ years of Software Development experience with Java and Angular/AngularJS technologies.
  • 3+ years of Technical Leadership or Lead Engineering experience.
  • Strong expertise in Java, Spring Boot, Spring Security, REST APIs, Microservices, JavaScript, TypeScript, Angular, HTML/CSS, SQL, Git, Maven, JUnit, and Mockito.
  • Hands-on experience with application security tools and methodologies, including SAST, DAST, and SCA.
  • Deep understanding of OWASP Top 10, secure SDLC practices, and API security.
  • Experience securing applications using OAuth2, JWT, and modern authentication frameworks.
  • Strong communication, problem-solving, and stakeholder management skills.

Preferred Qualifications

  • Experience with GitHub Copilot, AI-assisted security tools, AWS, GCP, Rancher, Jira, Drupal, Burp Suite, Checkmarx, or Fortify.
  • Security certifications such as CSSLP, GWAPT, CEH, or equivalent.
  • Experience in Agile development environments and enterprise-scale application delivery.

Technologies

  • Java
  • Spring Boot
  • Angular
  • Microservices
  • Veracode
  • Checkmarx
  • Fortify
  • OWASP
  • REST APIs
  • OAuth2
  • JWT
  • JavaScript
  • TypeScript
  • HTML/CSS
  • SQL
  • Git
  • Maven
  • JUnit
  • Mockito
  • Spring Security
  • AngularJS
  • SAST
  • DAST
  • SCA
  • GitHub Copilot
  • AI-assisted security tools
  • AWS
  • GCP
  • Rancher
  • Jira
  • Drupal
  • Burp Suite

Benefits

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee assistance program
  • Health insurance
  • Life insurance
  • Vision insurance

Location

Scottsdale, AZ (Hybrid – 4 days onsite, 1 day remote)

Employment Type

Direct Hire

Eligibility

U.S. Citizen or Green Card Holder Only

Compensation

USD 180,000 - 200,000 per year

Similar Jobs