Senior Application Security Engineer

November 18

Apply Now

Receive Emails with Similar Jobs

Avid

WebsiteLinkedInAll Job Openings

Media • Entertainment • Artificial Intelligence

Avid is a company that provides innovative tools and software solutions for the media, entertainment, and music production industries. Known for products like Pro Tools and Media Composer, Avid helps creative professionals produce top-quality audio and video content, from music and movies to news and live performances. The company integrates advanced technology, including AI, to enhance workflows and efficiency in content creation. Avid also emphasizes ethical AI and collaborates with industry groups to promote responsible use in music and media production.

1001 - 5000 employees

Founded 1987

📱 Media

🤖 Artificial Intelligence

📋 Description

• Lead secure code reviews, threat modeling, and vulnerability assessments across web, mobile, and API-based applications • Collaborate with development teams to integrate security into CI/CD pipelines and DevSecOps workflows • Develop and maintain security tooling (e.g., SAST, DAST, IAST, SCA) and ensure effective coverage and tuning • Provide guidance on secure coding practices and conduct security training for engineering teams • Partner with product and engineering teams during design and architecture phases to ensure security is built-in • Define and implement security controls for cloud-native applications and infrastructure (AWS, Azure, GCP) • Work closely with DevOps teams to secure containerized environments (Docker, Kubernetes) and infrastructure-as-code (Terraform, CloudFormation) • Monitor and respond to cloud security events and misconfigurations using CSPM and SIEM tools • Drive automation of security processes and compliance checks within CI/CD pipelines • Contribute to security policies, standards, and procedures related to application and cloud security • Support internal and external audits, ensuring compliance with frameworks such as SOC 2, ISO 27001, and NIST

🎯 Requirements

• Bachelor’s degree in Information Technology, Computer Science, Software Engineering, and/or other related fields • 5+ years of experience in application security, with at least 2 years in cloud and DevOps security • Strong understanding of OWASP Top 10, secure coding practices, and modern application architectures • Hands-on experience with cloud platforms (AWS, Azure, etc) and container orchestration (Kubernetes) • Proficiency in scripting languages (Python, Bash) and familiarity with CI/CD tools (Jenkins, GitHub Actions, GitLab CI) • Experience with security tools such as Burp Suite, Checkmarx, SonarQube, Prisma Cloud, or similar • Prior working knowledge in NIST 800-53, 800-218, and ISO/IEC 27001:2022 security practices • Relevant certifications (e.g., OSWE, OSCP, CSSLP, AWS Security Specialty, GIAC Cloud Security or SANS,ISC²,COMPTIA) are a plus

🏖️ Benefits

• Attractive benefits package including health & life insurance • Referral rewards • Generous leave policies to ensure a healthy work-life balance • Access to development programs with strong support and mentoring to help you grow and advance within the company