Cybersecurity Engineer - Application Security

About The Position

Requirements

• Minimum five (5) years of hands-on experience in cybersecurity, with at least two (2) years focused on application, web, or cloud security engineering.
• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Demonstrated experience working with application or web security platforms (e.g., WAF, DAST/SAST, API security, security logging solutions).
• Solid understanding of application-layer attack techniques, threat actor TTPs, and the MITRE ATT&CK framework.
• Experience working closely with SOC, detection engineering, or incident response teams.
• Ability to analyse logs, security events, and telemetry to support detection development and incident investigations.
• Scripting or automation experience (e.g., Python, PowerShell, or similar) to support security operations and tooling integration.
• Familiarity with SIEM platforms and security analytics; experience with query languages such as KQL is a plus.

Nice To Haves

• Experience supporting or participating in application security assessments, red team, or purple team activities.
• Familiarity with OWASP Top 10, API Security Top 10, and common web exploitation techniques.
• Working knowledge of application logging, observability platforms, and security telemetry pipelines.
• Experience integrating security controls into CI/CD or modern application delivery workflows.
• Familiarity with security frameworks and standards (e.g., NIST, ISO 27001, CIS Controls) and their application to software systems.
• Experience in large enterprise or regulated environments.
• Relevant certifications such as GWAPT, GWEB, CSSLP, CompTIA or equivalent practical experience.

Responsibilities

• Support the design, configuration, and ongoing optimization of application and web security platforms, including WAF, API security, DAST/SAST tooling, RASP, and application-layer monitoring solutions.
• Partner with application, DevOps, and platform teams to embed security controls into new and existing applications, ensuring security requirements are implemented pragmatically without disrupting delivery.
• Define and maintain application security baselines, configuration standards, and control requirements aligned with industry best practices and KLA security architecture.
• Ensure application and web security platforms integrate effectively with SIEM, SOAR, logging pipelines, and identity platforms to maximize security visibility and detection value.
• Support the rollout of new security capabilities through structured project implementation, including requirements gathering, testing, validation, and operational handover.
• Evaluate new tooling, features, and detection capabilities, leading proof-of-concept activities and supporting informed adoption decisions.
• Monitor agent health, fleet coverage, and version compliance; manage agent lifecycle including upgrades, rollouts, and rollback procedures.
• Collaborate with SOC teams to develop, tune, and maintain application- and web-layer detections mapped to MITRE ATT&CK techniques and real-world attacker behaviors.
• Improve detection fidelity by analyzing false positives, coverage gaps, and noisy signals across application logs, web telemetry, and API activity.
• Ensure critical application security events are visible, actionable, and aligned with SOC workflows and incident response playbooks.
• Assist with threat hunting activities focused on application abuse, web exploitation, authentication bypass, and API misuse using log analytics and behavioral signals.
• Support post-incident root cause analysis by correlating application telemetry, security alerts, and infrastructure data to identify control gaps and improvement opportunities.
• Act as a cybersecurity engineering resource for application and platform projects, providing implementation guidance, security validation, and operational readiness support.
• Work closely with engineering and delivery teams to translate security requirements into actionable technical controls.
• Support security architecture initiatives by validating that implemented controls meet intended design and risk objectives.
• Provide technical input into security risk assessments, application onboarding, and exception handling processes.
• Produce and maintain technical documentation, including configuration standards, integration guides, and operational runbooks.
• Identify and resolve complex integration and interoperability issues between application security tooling, logging platforms, CI/CD pipelines, and identity systems.
• Support troubleshooting of detection gaps, data quality issues, and performance concerns impacting security visibility.
• Serve as a technical escalation point for application security tooling issues, coordinating with vendors and internal platform owners.
• Partner with IT, cloud, and application teams to ensure security tooling scales reliably across global environments.

Benefits

• medical
• dental
• vision
• life
• 401(K) including company matching
• employee stock purchase program (ESPP)
• student debt assistance
• tuition reimbursement program
• development and career growth opportunities and programs
• financial planning benefits
• wellness benefits including an employee assistance program (EAP)
• paid time off
• paid company holidays
• family care and bonding leave