Franklin Fitch

Compensation

Full Description

We are looking for a seasoned Application Security Specialist to join a leading organization’s security team. In this position, you will act as a trusted technical advisor, guiding secure design and modern security practices across a complex, global enterprise. You will collaborate with software development, cloud, and infrastructure teams to ensure applications are robust, scalable, and compliant with organizational standards. This role offers the opportunity to shape the company’s application security strategy, embed security into development pipelines, and influence secure coding practices across multiple business units. Responsibilities • Drive the enterprise application security strategy and ensure alignment with organizational objectives. • Establish and implement secure design standards across cloud-native, containerized, and on-premises environments. • Create and maintain reusable architecture patterns and security frameworks for enterprise-wide adoption. • Conduct threat modeling, architecture reviews, and risk assessments to detect and mitigate vulnerabilities early. • Integrate security testing tools (SAST, DAST, SCA, IAST, secrets scanning) into development pipelines and CI/CD workflows. • Partner with DevOps, Cloud, and Infrastructure teams to embed security practices into engineering processes. • Collaborate with software developers, architects, and business stakeholders to promote consistent security practices. • Support incident response, compliance audits, and risk investigations with application-specific expertise. • Keep abreast of emerging threats and security technologies to enhance the organization’s security posture. Qualifications • Bachelor’s degree in Computer Science, Cybersecurity, or a related technical discipline (or equivalent experience). • At least 5 years of experience in software development, application security, or software architecture. • Relevant certifications such as CISSP, CSSLP, or GIAC preferred. • Experience securing applications in AWS or Azure environments. • Background in regulated industries is a plus. Skills & Competencies • Strong understanding of web application security principles, OWASP Top 10, and secure development lifecycle practices. • Experience designing and securing modern architectures including microservices, APIs, containers, and serverless applications. • Proficiency in one or more programming languages (C#/.NET or Python preferred). • Hands-on experience with application security tools such as SAST, DAST, SCA, IAST, and secrets scanning. • Excellent communication, collaboration, and influencing skills across both technical and non-technical teams.