Software Security Specialist Sr - Application Security

About The Position

Requirements

• Deep expertise guiding development teams in remediating common application vulnerabilities, including OWASP Top 10, API security, and secure design principles.
• Proven hands-on experience performing threat modeling to identify and mitigate risks in software.
• Practical experience building and implementing strong authentication solutions.
• A genuine passion for secure software development, with the ability to clearly articulate its importance.
• Strong analytical skills to identify gaps in the Software Development Lifecycle (SDLC) and recommend actionable improvements.
• Hands-on experience with secure design, security architecture, and implementing software security solutions.
• Ability to work both independently and collaboratively within cross-functional teams.
• Familiarity with Agile development methodologies (e.g., Scrum, Kanban).
• Experience with SAST, DAST, RASP, and integrating security into CI/CD pipelines.

Nice To Haves

• Hands-on experience with secure coding and secure by design practices.
• Knowledge of software security frameworks such as BSIMM or SAMM.
• Strong technical skills in application security, product security.
• Relevant certifications such as CSSLP, SANS GWAPT.
• Experience securing public cloud environments (e.g., AWS, Azure, GCP).
• Background in software development.
• Familiarity with tools like SD Elements or similar platforms.
• Ability to define and track security metrics and reporting.
• Proven hands-on experience designing, building, and securing AI systems in production environments.
• Led or contributed to a Security Champions program to promote secure development practices and foster cross-functional security awareness.

Responsibilities

• Responsible for enabling developers to create more secure software through coaching and mentoring developers and provides subject matter expertise to Application Security programs.
• Works with developers to help them create more secure code.
• Manages projects and tasks related to developer.
• Sets secure coding standards and requirements with team.
• Coaches developers on language specific coding techniques to avoid or remediate coding flaws.

Benefits

• Medical/prescription drug coverage (with a Health Savings Account feature).
• Dental and vision options.
• Employee and spouse/child life insurance.
• Short and long-term disability protection.
• 401(k) with PNC match, pension and stock purchase plans.
• Dependent care reimbursement account.
• Back-up child/elder care.
• Adoption, surrogacy, and doula reimbursement.
• Educational assistance, including select programs fully paid.
• A robust wellness program with financial incentives.
• Maternity and/or parental leave.
• Up to 11 paid holidays each year.
• 8 occasional absence days each year, unless otherwise required by law.
• Between 15 to 25 vacation days each year, depending on career level and years of service.