Sr. IT Application Security Engineer

About The Position

Requirements

• In-depth experience with Microsoft Dynamics 365, Azure Active Directory, and IFS ERP security models.
• Advanced knowledge of RBAC, access provisioning, least-privilege, and segregation of duties in enterprise/cloud environments.
• Hands-on expertise in secure application development, vulnerability management, code reviews, and threat modeling.
• Proficiency with security testing tools (SAST, DAST), CI/CD pipeline integration, and automation scripting (e.g., PowerShell, Python).
• Strong grasp of security standards and frameworks (e.g., OWASP Top 10, NIST, ISO 27001).
• Familiarity with cloud security best practices, secure REST API development, and modern authentication mechanisms.
• Excellent communication, documentation, and stakeholder engagement abilities.
• Ability to translate security concepts for technical and non-technical audiences.
• Strong problem-solving, analytical, and incident investigation skills.
• Collaborative approach with a drive for continuous improvement and knowledge sharing.
• 3+ years of experience in application security roles (preferably in enterprise Microsoft or ERP environments).

Nice To Haves

• Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent professional experience).
• Certifications such as CISSP, CSSLP, or relevant Azure security credentials are a plus.

Responsibilities

• Design, implement, and manage application security controls and RBAC for Dynamics 365, Azure, and IFS ERP.
• Conduct regular security assessments, code reviews, vulnerability scans, and penetration tests across Microsoft and ERP platforms.
• Lead application security reviews, threat modeling, and risk analysis for new product features and integrations.
• Advise development on secure architecture, design, and coding practices, serving as SME throughout the SDLC.
• Build automation for access provisioning, entitlement checks, and compliance monitoring within enterprise apps.
• Develop guidance and best practices for secure configuration, data access, and RBAC implementation.
• Train product and engineering teams on secure coding and emerging threats, fostering a security-first mindset.
• Respond to and investigate application security incidents, drive remediation and continuous improvement.
• Maintain documentation and ensure alignment with security frameworks (NIST, OWASP, ISO 27001) and regulatory requirements.
• Collaborate with IT, DevOps, and audit teams to support audits, compliance initiatives, and ongoing security operations.

Benefits

• MPS offers a comprehensive benefits package.
• We provide health care coverage, dental and vision, and life and disability protection.
• Employees in sales positions may be eligible for our sales incentive bonuses.
• Employees in certain positions may be eligible for stock compensation.
• For more information on MPS’ benefits please view our company website at www.monolithicpower.com .