Description
This role is the first dedicated Application Security hire on a growing security team and will build the AppSec function from the ground up. The focus is hands-on, practitioner-level application security with SAST and DAST at the core, strong API security fundamentals, and close partnership with developers.

The environment is SaaS-heavy and AWS-native with no on-prem applications. This role embeds security directly into modern development workflows, including AI-assisted coding using tools like Cursor and GitHub Copilot, ensuring secure application, API, and cloud delivery at scale.


What You’ll Do (Core Responsibilities)

• Own and operate the organization’s SAST and DAST programs end-to-end

• Design, deploy, tune, and mature SAST and DAST tooling across development and release pipelines

• Review application code, including AI-generated code, to identify vulnerabilities, insecure patterns, secrets exposure, and data hand...