Principal App Security Engineer
2 weeks ago
Essential Functions Application Development Lifecycle Security – Independently ensure that identified software defects are properly triaged for false positives, correctly prioritized based on criticality, and mitigated. Automate the discovery, profiling, and continuous security monitoring of code. Responsible for integrating the security toolset into the CI/CD pipeline. Responsible for managing the current application security toolset and advising management on improvements. Accountable for managing our software supply chain by defining, documenting, and updating the program to include discovery and reporting of software bill of materials (SBOM). Accountable for inventory, documentation, monitoring, and securing production APIs. Accountable for conducting threat assessments, building threat models, and creating remediation plans based on the results of threat assessments. Perform or facilitate the performance of security risk assessments. Perform RFI and engage web application penetration testers as needed and by policy. Anticipate need, initiate, and guide discussions on security strategy and architecture changes. Work with the privacy function to implement data protection requirements. Vulnerability Disclosure Program – Responsible for managing vulnerabilities identified by independent researchers and vetting them for accuracy. Independently assess the vulnerabilities against risk and criticality, then manage them alongside other security defects. Additional responsibilities – Define and develop the Application Security strategy and roadmap across people, process, and technology. Create and perform necessary testing, scanning, and remediation of our internet‑facing web applications with respect to compliance with Americans and Disabilities Act (ADA). Configure, troubleshoot, and manage the development environment. Identity and Access Management – Ensure that development and production application assets in the cloud are configured to support security policies including those for data at rest and data in transit. Where assigned, manage the relationship with the vendor, including contract review and negotiation, performing quarterly business reviews, and creating performance and other reporting metrics. Design security compliance metrics that align with Application Security requirements and assist with driving enforcement. Assist with triaging potential security incidents. Job Summary Focus Brands is on a journey to build out an industry‑leading Digital Platform which will power its seven existing brands and enable smooth integration of future brands. The Application Security Engineer, Principal performs a critical role in our roadmap to deliver the most secure, privacy‑focused, and compliant customer‑facing brand websites. Although the role is a part of the Information Security organization, the experienced incumbent will be embedded with development teams and data scientists and collaborate effectively with various teams within technology and product, and will be responsible and accountable for creating programs and driving the performance of secure software development practices, including addressing vulnerabilities and software security defects, and documenting and managing software supply chain threats and risks. This opportunity will reward the incumbent with a chance to originate security programs, tasks, and methodologies to enable Focus Brands to build products to allow more customers to enjoy our iconic brands. #J-18808-Ljbffr
-
Principal App Security Engineer
21 hours ago
Atlanta, United States Focus Brands Full timeEssential Functions Application Development Lifecycle SecurityIndependently ensure that identified software defects are properly triaged for false positives, correctly prioritized based on criticality, and mitigated.Automate the discovery, profiling, and continuous security monitoring of code.Responsible for integrating the security toolset into the CI/CD...
-
Principal Security Engineer
4 weeks ago
Atlanta, United States Navy Federal Credit Union Full timeOverview We are seeking a highly skilled and experienced Principal Cybersecurity Engineer to lead the design, implementation, and optimization of our web security infrastructure. This role will focus on advanced Bot defense, Application and API protection, and secure web delivery leveraging Akamai, Cequence and related technologies. The ideal candidate will...
-
Principal Product Manager
7 days ago
Atlanta, United States Home Depot Full timePrincipal Product Manager With a career at The Home Depot, you can be yourself and also be part of something bigger. Position Purpose: This Principal Product Manager will lead strategy & scope definition for the Home Depot mobile app ecosystem, including the Hubspace smart home app as it relates to the Home Depot app and site. Key Responsibilities: 10%...
-
Principal Information Security Engineer
1 week ago
Atlanta, GA, United States ServiceNow Full timeIt all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly...
-
Principal Software Engineer
2 weeks ago
Atlanta, United States ByteLight Full timeJob Summary QSC is a global leader in full-stack AV solutions, delivering cutting-edge technology that transforms collaboration and physical experiences across corporate, education, hospitality, entertainment, and other markets. With a reputation for innovation, quality, and customer‑first service, QSC is one of the fastest‑growing companies in the...
-
Principal Offensive Security Engineer
1 week ago
Atlanta, GA, United States Autodesk Full timeJob Requisition ID # 25WD91774 Position Overview Are you passionate about computers, software, and the art of dismantling code, devices-even cars? Do you love protecting people from digital threats, whether they come from cybercriminals or simple human error? If you've ever read 2600 or celebrated the Phrack anniversary edition at DEFCON33, we might have the...
-
Principal Offensive Security Engineer
4 days ago
Atlanta, GA, United States Autodesk Full timeJob Requisition ID # 25WD91774 Position Overview Are you passionate about computers, software, and the art of dismantling code, devices-even cars? Do you love protecting people from digital threats, whether they come from cybercriminals or simple human error? If you've ever read 2600 or celebrated the Phrack anniversary edition at DEFCON33, we might have the...
-
Cybersecurity Principal Engineer
9 hours ago
Atlanta, GA, United States Truist Inc Full timeThe position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status. Need...
-
Principal Engineer
3 weeks ago
Atlanta, United States LiminalArc Full timeFor LA Transformations, the Principal Engineer partners with the Principal Consultant and Delivery Executive to ensure the Studio Services are included in the transformation design. They will consult during the creation and execution of the client engagement to ensure the Studio services are properly engaged in support of the strategic goals of the...
-
Principal Data Engineer
1 week ago
Atlanta, United States Worth AI Full timePrincipal Data Engineer Worth AI, a leader in the computer software industry, is looking for a talented and experienced Principal Data Engineer to join their innovative team. At Worth AI, we are on a mission to revolutionize decision‑making with the power of artificial intelligence while fostering an environment of collaboration and adaptability, aiming to...
