Progressive Leasing

Senior Application Security Engineer

Progressive Leasing

full-time

Posted on:

Location: Arizona, Utah • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureSDLC

About the role

  • Identify areas for improvement in our current CI/CD pipeline and design, implement, and maintain security enhancements
  • Partner with engineering teams to ensure security controls and tooling are integrated into the SDLC
  • Develop and lead a threat modeling program for new and existing applications
  • Identify vulnerabilities across applications and APIs
  • Engage engineering teams for remediation
  • Collaborate with the business and engineering teams to provide guidance on security best practices, prioritization of vulnerability remediation, etc.
  • Evaluate, implement, and manage security tools and technologies
  • Mentor and coach engineers, DevOps, and other team members to build a strong AppSec culture
  • Participate in AppSec team programs, such as Security Influencers (Champions) and office hours, to cultivate relationships and trust with the business and engineering teams
  • Document things like security best practices, proprietary CI/CD pipeline requirements, and AppSec processes
  • Disseminate documentation across the business, engineering, DevOps, and security teams and hold training workshops, where applicable

Requirements

  • 5 + years of experience in application security engineering
  • Working expertise in GitHub workflows, AWS, and Azure
  • Proven experience building secure pipelines for CI/CD
  • Deep understanding of application security concepts, including threat modeling, risk assessment, and secure coding best practices
  • Strong experience using DAST, IaC, SAST, SCA, and other security tools – and implementing them into pipelines
  • Familiarity with common security frameworks (i.e., OWASP, NIST, CIS)
  • Strong problem-solving and analytical skills with the ability to think like an attacker – while acting as a defender
  • Excellent communication and collaboration skills
  • A team-oriented mindset with a passion for sharing knowledge and elevating others