Application Security Architect & Engineer

Role Overview
The client requires an Application Security Engineer to support secure application development across the Software Development Life Cycle (SDLC). The candidate will work with development and operations teams to implement secure design practices, identify vulnerabilities, and ensure compliance with enterprise security standards in cloud and application environments.

Key Responsibilities
Provide security guidance, training, and best practices to development and operations teams
Evaluate software architecture and design to identify security risks and enforce secure coding standards
Perform source code reviews to identify vulnerabilities and recommend remediation strategies
Secure modern architectures including cloud environments, APIs, microservices, and client server applications
Identify and mitigate vulnerabilities aligned with OWASP Top 10 security risks
Support vulnerability remediation, patch management, and continuous security improvement initiatives
Utilize application security testing tools such as SAST, DAST, and IAST along with security platforms
Analyze SIEM findings and apply appropriate security controls and frameworks
Ensure compliance with industry security frameworks and standards
Implement and evaluate cloud security controls in AWS environments
Develop and maintain System Security Plans (SSPs) and related documentation
Collaborate with cross-functional teams to integrate security controls into development workflows
Communicate security risks, impacts, and mitigation strategies to technical and non-technical stakeholders

Required Skills (with Years)
Application Security 5+ years
Network/Firewall configuration or AWS Security Groups 2+ years
Log collection, vulnerability scanning/remediation, or privileged access management 4+ years
SIEM, IDS/IPS, or EDR security tools 4+ years
Security concepts, protocols, and threat vectors 5+ years
Security tools (Splunk, Rapid7 InsightVM, Tenable, CyberArk, Jenkins, Veracode) 4+ years
Linux and Windows system security and baseline hardening 4+ years
Web servers (IIS, Apache) administration and security 3+ years
Scripting (SQL, PowerShell, Bash) 3+ years
Firewall configuration and troubleshooting 3+ years

Preferred Certifications
CompTIA Security+ / ISC2 Certified in Cybersecurity (CC) / OSCP / CCSP / CSSLP
AWS Solutions Architect (Associate/Professional) or AWS Security Specialty
CompTIA PenTest+ / Certified Ethical Hacker (CEH) / GIAC Certified Intrusion Analyst (GCIA)