Ivanti

Senior Application Security Engineer

Ivanti

full-time

Posted on:

Location Type: Remote

Location: Italy

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

CloudPython

About the role

  • Manage the integration of security best practices throughout all phases of the software development lifecycle, ensuring robust protection of Ivanti’s products, services, and IT assets.
  • Build innovative and scalable security tools, processes, and solutions to proactively detect, remediate, and mitigate vulnerabilities across large and complex codebases.
  • Design secure architectures, perform comprehensive threat modeling, and lead penetration testing and code reviews on both web and mobile applications to maintain the highest levels of security.
  • Partner with development, operations, and architecture teams to deeply embed security into DevOps practices and foster a culture of continuous security awareness throughout the organization.
  • Lead security education initiatives by delivering clear, actionable training and documentation to cross-functional teams, and by driving vulnerability remediation efforts with stakeholders of varying technical backgrounds.
  • Collaborate with global product and engineering teams, business leaders, and third-party security vendors to interpret vulnerability reports and coordinate effective security solutions and disclosure programs.
  • Advise stakeholders on prioritizing vulnerabilities, implementing secure coding standards, applying cryptographic techniques, and adopting industry-leading security protocols and compliance practices.

Requirements

  • Over 5 years of experience in web application security, with deep technical knowledge of both common and advanced security vulnerabilities, exploitation techniques, and practical remediation strategies.
  • Proven expertise in applied cryptography, threat modeling, vulnerability assessment (including CVSS scoring and penetration testing), as well as secure software development practices across SSDLC and CI/CD pipelines.
  • Experience implementing and maintaining security tools and processes for large-scale codebases (such as SAST, SCA, DAST, container scanning), and providing secure coding education to developers.
  • Strong programming skills (preferably in Python), with the ability to explain complex security topics clearly to diverse technical and non-technical stakeholders.
  • Demonstrated ability to work cross-functionally in collaborative environments, contributing to responsible disclosure, bug bounty, and vulnerability management programs, as well as securing cloud and SaaS environments at scale.
Benefits
  • Remote-friendly, flexible schedules: Empower excellence in every setting and elevate human potential.
  • Competitive compensation & total rewards: Including health, wellness, and financial plans tailored for you and your family.
  • Global, diverse teams: Collaborate with talented people from 23+ countries.
  • Learning & development: Grow your skills with access to best-in-class learning tools and programs.
  • Equity & belonging: We value every voice. Your story helps inform our solutions for a changing world.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
web application securitysecurity vulnerabilitiesexploitation techniquesremediation strategiesapplied cryptographythreat modelingvulnerability assessmentsecure software developmentsecure coding standardsprogramming in Python
Soft Skills
clear communicationcollaborationcross-functional teamworksecurity educationstakeholder engagementcontinuous security awarenesstraining deliveryproblem-solvingadaptabilityleadership