Description
About the role:
The Lead Application Security Engineer will be responsible for building the AppSec program at Apollo, interacting with engineering to create a secure SDLC and implementing tools, education and processes to reduce risk of security issues in the tech stack.
Daily Adventures & Responsibilities:
- Own all aspects of the secure SDLC
- Select or build tooling to help developers build secure code
- Provide overall security architectural advice to Engineering and IT
- Manage issues sourced from penetration tests and bug bounty programs
- Manage security champions program
- Help Product, Engineering and IT incorporate security requirements into new products from inception
- Assist in the creation and maintenance of Security Risk Models for new projects and existing systems
What We're Looking For:
- 7+ years of development with some security experience in the AppSec domain.
- Strong Linux knowledge
- Strong software development skills
- Knowledge of common AppSec issues and tooling
- Ability to influence others
- Experience with cloud services, ideally GCP Experience with vulnerability management, or pentesting is a plus