Application Security Developer IV

📋 Description

• • Lead and drive application security initiatives and programs across the organization, ensuring alignment with business objectives and regulatory compliance.
• • Spearhead the design and implementation of security controls, detection mechanisms, and prevention strategies for web, mobile, and cloud-based applications.
• • Conduct advanced application security testing including DAST, SAST, IAST, and manual penetration testing using tools such as Burp Suite, OWASP ZAP, and others.
• • Analyze, triage, and prioritize security findings, providing actionable remediation guidance and proof-of-concept exploits.
• • Mentor and guide junior developers and security engineers in secure coding practices and application security principles.
• • Collaborate with development, DevOps, and infrastructure teams to integrate security into CI/CD pipelines and automated testing frameworks.
• • Participate in solution architecture reviews and provide security design guidance to ensure risk mitigation at the architectural level.
• • Maintain and enhance security tooling, automation, and processes, including DAST/SAST platforms, vulnerability management systems, and security orchestration tools.
• • Lead source code reviews with a focus on identifying and mitigating common vulnerabilities such as OWASP Top 10, SQL Injection, XSS, CSRF, RCE, XXE, SSRF, etc.
• • Develop custom tools, scripts, and integrations to support security automation, reporting, and remediation workflows.
• • Represent the security team in cross-functional teams and contribute to incident response and forensic analysis.
• • Provide strategic direction and thought leadership on application security topics, including threat modeling, secure coding standards, and emerging threats.
• • Contribute to security training, documentation, and awareness initiatives for development teams.
• • Perform any other job related duties as requested.