bswift is looking for a Senior Application Security Engineer to join our Information Security team. Reporting to the CISO, you will be responsible for driving a shift-left security culture within our development teams, helping to build a robust application security/DevSecOps function from the ground up. You will collaborate with developers to integrate security practices throughout the software development lifecycle, ensuring that security is an integral part of the development process. Your efforts will empower the development team to adopt a security-first mindset, with a focus on automation, scalability, and long-term security strategy.
In the first six months, you will:
• Design and implement an application security program aligned with best practices and the OWASP Top 10 framework.
• Help integrate security testing across the development lifecycle, from code analysis to deployment, with automation and feedback loops to ensure continuous improvement.
• Work closely with engineering and DevOps teams to integrate security testing into continuous integration/continuous deployment (CI/CD) pipelines.
• Cultivate a security-first culture within the development team by providing training, guidance, and creating a collaborative environment.
• Establish and launch a Security Ninja Champion Program to foster security champions within development teams.
• Develop and implement application security metrics, starting with vulnerability management, to measure program effectiveness and drive continuous improvement.
• Evaluate the current state of application security and identify areas for improvement and strategic alignment with broader organizational goals.
• Provide ongoing support and feedback to development teams, empowering them to address security concerns early in the development process.
• Provide secure design recommendations and architecture patterns to development teams.
• Provide Penetration testing oversight and management using 3rd party and internal resources.
• Lead and assist in any application related security incidents.
Required Experience:
• 5+ years of experience in application security or DevSecOps, ideally in an agile, cloud-first environment.
• Hands-on experience with security tools and practices for application security testing, such as SAST, DAST, and IAST.
• Deep understanding of the OWASP Top 10/LLP Top 10 and how to apply it across the software development lifecycle.
• Experience working within React/JS, Microsoft .NET stacks hosted in the AWS Cloud.
• Experience working with development teams to integrate security testing into the CI/CD pipeline.
• Strong knowledge of cloud-native security, particularly within AWS, and experience securing containerized applications (e.g., Kubernetes).
• Experience designing and implementing security training and awareness programs for developers.
• Proven ability to work cross-functionally to drive security initiatives across engineering and development teams.
• Familiarity with security automation tools and the ability to integrate them into development workflows.
Preferred Qualifications:
• Experience with security testing frameworks and tools like SonarQube, Contrast, Checkmarx, or Snyk.
• Familiarity with modern authentication and authorization frameworks (OAuth, OIDC, SAML).
• Experience in leading or mentoring security champions or developer advocate programs.
• Experience in risk assessments and threat modeling to identify and mitigate security risks in applications.
• Strong communication skills and the ability to evangelize security principles across teams.
Education:
• Bachelor’s degree (B.A.) in Computer Science, Information Security, or related field; or equivalent relevant work experience.
Why Join bswift?
At bswift, we empower our employees to make a meaningful impact, innovate, and grow. Joining our team means stepping into a collaborative and dynamic environment that values creativity, initiative, and a passion for client success. We are dedicated to fostering an inclusive workplace that celebrates diversity and values each team member’s unique contributions.
Benefits of Working at bswift:
- Comprehensive Health Benefits: Access to health, dental, and vision plans to support your wellness and that of your family.
- Competitive Compensation: A compensation package that recognizes your skills, experience, and contributions, including performance-based incentives for most roles.
- Remote first, Office friendly environment! No time to commute? No problem!
- Retirement Savings Plans: Options to help you plan for a secure financial future with employer-sponsored retirement savings programs.
- Professional Development: Opportunities for career growth, including training and access to resources to support your career progression.
- Supportive Culture: A work environment that encourages collaboration, open communication, and creative problem-solving, where your voice and ideas are valued.
- Employee Wellbeing Initiatives: Programs focused on mental health, financial planning, and wellness resources to help you thrive inside and outside of work.
Make an Impact: At bswift, your work directly contributes to transforming how organizations approach benefits administration and client engagement. Join us to be part of an organization that is making a meaningful difference in the lives of our clients and their employees.
Specific benefit offerings vary by position and may be subject to change.
Standard working hours are 8am-5pm Central Time, unless otherwise stated in the Job Description.
In the spirit of pay transparency, we are excited to share the base salary range for this position is $100,000-$170,000, exclusive of fringe benefits or potential bonuses. If you are hired at bswift, your final base salary compensation will be determined based on factors such as geographic location, skills, education, and/or experience. In addition to those factors – we believe in the importance of pay equity and consider internal equity of our current team members as a part of any final offer. Please keep in mind that the range mentioned above is the full base salary range for the role. Hiring at the maximum of the range would not be typical in order to allow for future & continued salary growth. We also offer a generous compensation and benefits package!
