Application Security Lead
Accurate BackgroundSalary not specified
Full Time
Expert & Leadership (9+ years)
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Telecommunications, CybersecurityIndustries
Requirements
- Typically 4-8 years of experience in application security, with significant hands-on experience using DAST tools and methodologies
- Proven expertise in testing complex web applications, APIs, and mobile applications for security vulnerabilities
- Experience integrating DAST tools (e.g., Burp Suite, IBM AppScan, HCL AppScan, Netsparker, Acunetix) into CI/CD pipelines and DevSecOps environments
- Strong understanding of application security standards (e.g., OWASP Top Ten, SANS CWE Top 25)
- Knowledge of complementary security testing approaches such as Static Application Security Testing (SAST) and Interactive Application Security Testing (IAST)
- Effective communication skills and experience collaborating with development teams to remediate vulnerabilities
- Familiarity with programming languages and frameworks commonly used in web and mobile applications, including Java, Python, Bash/Shell Scripting, PHP, Javascript, etc
- Bachelor’s degree in Computer Science, Information Security, Software Engineering, or a related discipline (preferred)
- Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Web Application Penetration Tester (GWAPT), Certified Application Security Engineer (CASE), or certifications related to security testing tools (e.g., Burp Suite Certified Practitioner)
- Deep technical knowledge of dynamic security testing tools and techniques
- Strong analytical skills to interpret scan results and distinguish false positives
- Solid understanding of web protocols, authentication mechanisms, and session management
- Ability to lead security testing initiatives and mentor junior security engineers
- Continuous learner mindset to stay ahead of evolving security threats and testing technologies
- Office presence of a minimum of 5 days per week (no relocation offered)
Responsibilities
- Lead the implementation, configuration, and optimization of DAST tools across development pipelines
- Define and maintain best practices and standards for dynamic application security testing
- Perform in-depth vulnerability assessments and security testing on web applications, APIs, and mobile apps
- Collaborate closely with development, DevOps, and security teams to integrate DAST into CI/CD workflows
- Analyze DAST scan results, validate findings, and prioritize remediation efforts based on risk
- Stay current on emerging threats, vulnerabilities, and exploits relevant to application security
- Provide expert guidance and training to teams on interpreting DAST reports and remediation strategies
- Support compliance efforts by ensuring security testing meets regulatory and industry standards
Skills
DAST
DevSecOps
CI/CD
Application Security
Vulnerability Assessment
Web Applications
APIs
Mobile Apps
Security Testing
DevOps
AT&T
Telecommunications services including wireless and broadband
About AT&T
AT&T provides telecommunications services, including wireless communications, broadband internet, and digital television, primarily in the United States. Its 5G network offers faster data speeds and more reliable connections, although availability can vary. The company caters to both individual consumers and businesses, offering various subscription plans that include options for unlimited data and bundled services that combine internet, TV, and phone. AT&T generates revenue mainly through subscription fees, device sales, and its streaming service, DIRECTV STREAM, which adds to its diverse offerings. In a competitive market, AT&T distinguishes itself with its extensive service range and strong brand presence.
Dallas, TexasHeadquarters
1876Year Founded
$43.3MTotal Funding
IPOCompany Stage
Consumer Software, EntertainmentIndustries
10,001+Employees
Benefits
Health Insurance
Dental Insurance
Vision Insurance
401(k) Retirement Plan
401(k) Company Match
Paid Vacation
Paid Sick Leave
Paid Holidays
Paid Parental Leave
Adoption Assistance
Disability Insurance
Life Insurance
Employee Assistance Programs
Wellness Program
Employee Discounts
Risks
The customer service guarantee may increase financial liabilities due to compensation for outages.
A recent data breach could damage AT&T's reputation and lead to customer churn.
Resistance to replacing landlines may impact customer retention and satisfaction.
Differentiation
AT&T offers a unique customer service guarantee, setting it apart from competitors.
The company is expanding its fiber network, enhancing broadband offerings in underserved areas.
AT&T's 'Phone-Advanced' device aligns with the trend of replacing traditional landlines.
Upsides
AT&T's fiber network expansion could provide a competitive edge in broadband services.
The new customer service guarantee may attract customers from competitors lacking similar assurances.
Collaboration with The Arc enhances AT&T's brand image through corporate social responsibility.
Related Jobs
RemoteRemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteStrategic Solutions Engineer, East
CrestaSalary not specified
RemoteSenior Security Engineer, Application Security
Trail of BitsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteLead Security Engineer
TimescaleSalary not specified
- Full Time
- Senior (5 to 8 years)
RemotePrincipal DevSecOps Engineer
Second Front SystemsSalary not specified
- Full Time
- Senior (5 to 8 years)