Lead Application Security Engineer || Irving, TX (Onsite/Hybrid - Locals only) || Fulltime

Job Title: Lead Application Security Engineer (with Veracode/Checkmarx)
Location: Irving, TX Hybrid (Local candidates only; 2-3 days onsite per week)
Job Type: Full-Time, Permanent
Experience: 10 Years
Interview Mode: Video

Job Summary:

We are looking for a seasoned and visionary Lead Application Security Engineer with a proven track record in Veracode, Checkmarx, and other industry-standard security tools. This is a hands-on leadership role that combines deep technical expertise with strong strategic and collaborative capabilities. The ideal candidate will possess extensive experience in application security, penetration testing, vulnerability management, static code analysis, and policy compliance, along with a natural ability to lead cross-functional security initiatives across a global enterprise.

You will work closely with security management, global engineering teams, and senior leadership to drive forward application security initiatives, evaluate emerging security technologies, and ensure the scalability and integrity of enterprise-wide compliance programs.

Key Responsibilities:

• Lead enterprise-level application security initiatives, with a focus on static code analysis, penetration testing, and vulnerability management.

• Serve as a subject matter expert for security tools like Veracode, Checkmarx, Fortify, and others.

• Collaborate with engineering, architecture, and DevOps teams to integrate secure development practices throughout the SDLC.

• Design and implement strategies to continuously analyze source code and remediate vulnerabilities early in the development lifecycle.

• Optimize the use of current security tools and explore emerging technologies to enhance security posture and scalability.

• Manage security compliance scanning processes across the organization to identify and resolve risks quickly and efficiently.

• Provide regular project and program updates to global stakeholders, including technical teams, business units, and executive leadership.

• Partner with the Director of Vulnerability Management to ensure consistent execution and advancement of security and compliance goals.

Required Qualifications:

• 10 years of overall experience, with at least 5 years focused in application security, penetration testing, vulnerability management, and static code analysis.

• Proven leadership in leading security projects and cross-functional teams.

• Expertise in Veracode and/or Checkmarx required; additional experience in Fortify or other SAST tools is a plus.

• Strong knowledge of penetration testing tools and web application scanning solutions.

• Hands-on experience with security compliance frameworks and implementation.

• Bachelor's degree in Computer Science, Cybersecurity, Network Engineering, or a related technical field (equivalent experience will be considered).

• Excellent communication skills with a demonstrated ability to engage and influence technical and executive stakeholders.

Preferred Qualifications:

• Prior experience as a security team lead or technical supervisor in a similar enterprise environment.

• Experience with Agile/Scrum environments and CI/CD pipelines.

• Familiarity with modern DevSecOps practices.

Why Join Us?

• Work at the forefront of application security with the autonomy to influence technical direction and enterprise policy.

• Collaborate with high-caliber teams across business, engineering, and security verticals.

• See real-time impact through enterprise-wide security transformation initiatives.

• Competitive salary and comprehensive benefits in a supportive hybrid work environment.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.