Senior Application and Cyber Security Engineer
- P2P SOFTTEK Staffing Services
17 Hours Ago
NA
C2C
New York-NY
6-10 Years
Required Skills: Application Security, Software Engineering, Python, Java, C#, OWASP Top 10, AI Security
Job Description
Seeking a Senior Application Security Engineer to join our NYC-based security team in a hybrid capacity. This role is designed for a technical expert with 5–6 years of experience in AppSec who is eager to spearhead the firm's transition into AI Security. You will start by securing our core financial applications while receiving dedicated training and mentorship to become the firm's primary authority on AI Security and Governance.
Key Responsibilities
Key Responsibilities
- Application Security (Immediate Focus):
- Conduct deep-dive code reviews and architectural risk assessments for internal and external-facing financial platforms.
- Manage and automate SAST, DAST, and SCA tooling within the CI/CD pipeline.
- Partner with developers to remediate vulnerabilities and champion "Security as Code " across the organization.
- AI Security Evolution (Future Focus):
- Undergo internal and external training to build a comprehensive AI Security Framework for the firm.
- Evaluate the security posture of third-party AI models and LLM integrations.
- Develop defenses against AI-specific threats, such as prompt injection, data poisoning, and model inversion.
Qualifications:
- Experience: 5–6 years of dedicated experience in Application Security or Software Engineering with a heavy focus on security.
Technical Skills:
- Proficiency in languages such as Python, Java, or C#, and a deep understanding of the OWASP Top 10.
- Banking Context: Experience working in a highly regulated environment (Client/SEC) is a major plus.
- The "AI Mindset ": No prior professional AI security experience is required, but a demonstrated interest in machine learning risks and a high "learn-ability " index are essential.
