Staff Application Security Engineer

One of our leading Investment Management clients is looking for a Staff Application Security Engineer to drive secure-by-design software development across the organization. This is a strategic, high-impact role focused on embedding practical, developer-friendly application security at scale.

What You'll Do

• Define and execute risk-based application security strategy aligned to business priorities

• Identify, prioritize, and remediate application-level vulnerabilities (infrastructure out of scope)

• Embed security into applications and CI/CD pipelines through automation

• Enable developers through Tech Talks, Wikis, and hands-on guidance

• Act as a trusted advisor on secure coding and design practices

• Partner with product, cloud, and architecture teams to integrate security early

• Communicate risk posture and progress to senior leadership

What We're Looking For

• 7+ years' experience in software engineering and/or application security

• 3+ years in secure software development practices

• Deep expertise in SAST, DAST, SCA, and secrets scanning

• Strong cloud security knowledge (AWS/Azure, containers, Kubernetes)

• Hands-on coding background preferred

• Experience influencing engineering teams and driving mature security programs

• Strong stakeholder and executive communication skills

• Experience with ArmorCode or similar vulnerability management platforms

Why Join

• High-performance, inclusive engineering culture

• Strong investment in learning, mobility, and continuous development

• Opportunities to influence security at enterprise scale

• Competitive base salary plus discretionary bonus

If you're passionate about making application security an enabler for innovation, this role offers the chance to create lasting impact across a global engineering organization.