Related skills
aws ci/cd sast dast sca๐ Description
- Embed security into CI/CD pipelines with scalable guardrails and automated checks.
- Drive secure coding practices across engineering teams via tooling and guidance.
- Lead threat modeling for high-risk features and new architectures.
- Own and tune AppSec tooling: SAST, DAST, SCA, secrets scanning, container scanning, and dependency management.
- Partner with DevOps to ensure automated testing integrates into build, test, and deploy workflows with high signal-to-noise and minimal developer friction.
- Evaluate emerging technologies to strengthen AppSec capabilities.
๐ฏ Requirements
- 8+ years in application security or software engineering.
- Hands-on with SAST, DAST, SCA, secrets, container scanning, CI/CD.
- OWASP Top 10, ASVS, CWE Top 25, and secure coding principles.
- Threat modeling, code review, and architecture analysis.
- Experience partnering with Engineering to drive remediation and maturity improvements.
- AWS SaaS/cloud familiarity; SOC 2, GovRAMP, TX-RAMP familiarity.
๐ Benefits
- Comprehensive healthcare options for individuals and families
- Flexible vacation policy and paid company holidays
- 401(k) with company match
- Paid parental leave, wellness stipends, and HSA contributions
- Professional development and growth opportunities
- A collaborative office environment with weekly catered lunches
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!