Application Security Engineer
External
Packsize · Packsize Salt Lake CityFull-timeRemote2w ago
Application SecurityCloud SecurityComplianceCryptographyGDPRIoT
Prepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
About the role
Packsize is seeking an experienced Application Security Engineer to champion secure software development across our technology stack. You will collaborate closely with development and product teams to integrate robust security practices into every stage of our SDLC, ensuring that security is a foundational element of our technology solutions and product innovations.
Responsibilities
- Embed with software engineering teams to guide the secure design, development, and deployment of applications, advocating for "security by design."
- Drive the adoption of automated security tools and processes within the software development lifecycle to detect and remediate vulnerabilities early.
- Conduct threat modeling, code reviews, and vulnerability assessments for web, cloud, and OT (Operational Technology) applications and services.
- Lead security initiatives targeting improvements in Packsize's application and machine software environments.
- Serve as a subject matter expert for application security within cross-functional forums, providing clear guidance on secure coding, secure architecture, and best practices.
- Collaborate on the creation, maintenance, and communication of security policies and secure SDLC standards, ensuring alignment with industry regulations and compliance mandates.
- Identify, assess, and prioritize application security risks and work with engineering and business leaders to develop effective remediation strategies.
- Assess third-party and open-source dependencies for security risks, ensuring that vendor and supply chain security meet Packsize standards.
- Respond to security incidents involving applications, lead root cause analyses, and drive post-incident improvements.
- Perform regular security testing, such as SAST, DAST, and penetration testing, to validate the security of applications.
- Provide expert input on cryptography and key management for applications, ensuring robust protection of data in transit and at rest.
- Evaluate and recommend new security solutions and tools to continually improve Packsize's application security posture.
Requirements
- 10+ years of security-related experience, with at least 5+ years in an application security or software security engineering role.
- Deep experience working with software development teams to embed security practices into the software development lifecycle and release processes.
- Technical proficiency in secure coding practices, application vulnerability scanning, and remediation.
- Experience securing OT (Operational Technology) and machine software environments, especially challenges like remote device deployment and secure firmware/software delivery.
- In-depth knowledge of cloud security best practices and architecture, especially for SaaS or IoT products.
- Demonstrated experience delivering and implementing technical security solutions for complex application environments.
- Strong background conducting security assessments, risk analyses, and security testing for applications.
- Familiarity with compliance requirements (GDPR, SOX) and security frameworks (SOC2, ISO, NIST) as they relate to application development and deployment.
- Excellent interpersonal skills; able to influence, educate, and partner with technical and business stakeholders at all levels.
- Passion for mentoring developers on secure coding and application security best practices.
- Working Environment and Physical Demands
- Able to commute to Packsize Headquarters; hybrid remote work available.
- Office-based work environment; ability to sit for extended periods and move about the office as needed.
- Periodic remote work; comfortable with a hybrid office setting.
- Ability to travel up to 15%, including international travel.
Benefits
Packsize considers several factors when determining compensation whenextending a job offer, including but not limited to, the role being offered, theassociated responsibilities, the candidate's prior work experience,education/training, and any special skills.If this role excites you but you don't meet each requirement listed, weencourage you to apply anyway. At Packsize, we welcome applicants of allbackgrounds and experiences and understand that the best candidates maycome from the most unlikely of places.Packsize is an Equal Opportunity employer and is committed to diversity inits workforce. In compliance with applicable federal and state laws,Packsize policy of equal employment opportunity prohibits discriminationon the basis of race or ethnicity, religion, color, national origin, sex, agePaid time offRemote work options
Additional Information
Job Description: About Packsize , Packsize is redefining the way businesses and their customers use and experience packaging around the world. We build the technology, design the right solutions, and automate the processes that propel the industry forward. To us, packaging is much more than a box-it's delivering what's right for our customers, their customers, our people, and the planet. Job Title : Application Security Engineer
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at packsize? Share your experience