Application Security Engineer

About the Role:

We are seeking a skilled Application Security Engineer to strengthen the security posture of our internal and customer-facing IT applications. You will be responsible for identifying, analyzing, and mitigating security risks in software applications, and ensuring secure development practices are followed across the IT environment.

Key Responsibilities:

• Conduct vulnerability assessments and penetration tests on internal and third-party applications.
• Perform static and dynamic application security testing (SAST/DAST).
• Collaborate with IT and development teams to remediate vulnerabilities and enforce secure coding practices.
• Integrate security tools into the software development lifecycle (SDLC) and DevOps pipelines.
• Review source code for security vulnerabilities across multiple programming languages.
• Develop threat models and participate in application architecture reviews.
• Stay current on the latest security threats, vulnerabilities, and regulatory requirements relevant to IT systems.
• Document findings and provide clear remediation advice to technical teams.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 3+ years of experience in application security, ideally in an IT or enterprise environment.
• Strong knowledge of application-layer attacks (OWASP Top 10, SANS Top 25).
• Experience with tools such as Burp Suite, SonarQube, Fortify, Veracode, or similar.
• Familiarity with secure coding practices in languages such as Java, .NET, Python, or JavaScript.

Salt is acting as an Employment Agency in relation to this vacancy.