Application Security (AppSec) Engineer
Family: Security
Embeds security practices into software development to prevent vulnerabilities before they reach production.
Day to day
Reviews code for security flaws, performs threat modeling, triages vulnerability reports, and trains developers on secure coding practices.
Core skills
- threat modeling
- SAST/DAST
- vulnerability management
- secure code review
- OWASP