Job Overview
Devonshire Recruitment & Consulting Partners is actively seeking a Principal Application Security Engineer to provide strategic security guidance across a diverse product portfolio. This high-impact role focuses on shaping secure design practices, influencing product security strategies, and partnering with development teams to deliver secure solutions from inception to release.
Key Responsibilities
- Advise development teams on secure architecture, risk trade-offs, and best practices.
- Facilitate threat modeling and architecture review sessions.
- Establish and promote security standards, frameworks, and reusable blueprints.
- Consult with stakeholders to align security recommendations with business goals.
- Influence application security program initiatives and awareness efforts.
Required Qualifications
- 6+ years in security consulting, architecture, or advisory roles with strong application security experience (SAST, DAST, SCA, etc.).
- Proven expertise in security assessments, threat modeling, and secure code reviews.
- Strong knowledge of modern development practices, cloud platforms (AWS, Azure, GCP), and containerization technologies (Docker, Kubernetes).
- Proficiency with security testing tools such as Synopsys, CodeQL, CSPM, etc.
- Solid understanding of enterprise security principles and frameworks.
Desired Skills & Qualifications
- Security certifications (CISSP, SABSA, TOGAF) preferred.
- Familiarity with regulated industries such as healthcare.
- Experience developing security programs or frameworks.
- Strong communication and stakeholder engagement skills.
