Application Security Engineer 3

📋 Description

• Lead AppSec maturity assessments using BSIMM, NIST SSDF, OWASP SAMM
• Design and deliver strategic roadmaps with 12–36 month plans
• Facilitate workshops with executive, engineering, and AppSec leadership
• Deliver executive-level presentations to CISOs and software leaders
• Contribute to internal tools and dashboards for maturity scoring
• Support thought leadership via whitepapers and webinars on secure software

🎯 Requirements

• 5–8 years of experience in application security or related consulting
• Strong knowledge of BSIMM, NIST SSDF, or OWASP SAMM
• Experience with OSS security, vulnerability tracking and remediation
• Familiarity with SBOM standards and tools (SPDX, CycloneDX)
• Proven experience developing maturity models and multi-year roadmaps
• Hands-on secure SDLC practices, CI/CD pipelines, and code-level security controls
• Excellent verbal and written communication; able to present to executives