Application Security Tech lead

AppsFlyer’s Security team is looking for a security-savvy person to join us as an Application Security Tech lead Engineer to lead the product and application security design as well help validate our services and environments according to the highest security standards. You will work closely with our R&D and Product teams, and solve complex security problems.

The ideal candidate is highly motivated, always eager to learn, and demonstrates a ‘can do' attitude. You will play a pivotal role in safeguarding our products against security threats and vulnerabilities. You will need to have a combination of troubleshooting, technical, and communication skills, as well as the ability to handle multiple tasks that will include project and technical work. This role will provide career growth opportunities as you develop/acquire new security skills in the course of your duties.

What you'll do:

• Act as a tech leader mentoring application security engineers, DevSecOps engineers, and developers. 
• Collaborate with developments to integrate security controls and standards into the software development lifecycle (SDLC)
• Conduct threat modeling and architecture security review
• Conduct regular security assessments, including secure product design, code reviews, vulnerability scans, and penetration testing, to identify and remediate security vulnerabilities in applications
• Stay current with emerging threats, vulnerabilities, and industry best practices in application and product security
• Participate in security incident response activities and contribute to post-incident reviews and remediation efforts
• Collaborate with cross-functional teams to ensure security requirements are effectively integrated into product development processes
• Deliver secured development training to developers

What you have:

• 7+ years of experience in Application Security / Pen testing and product security in a SAAS company 
• Bachelor's degree in Computer Science, Information Security, or a related field
• Strong understanding of web application security concepts and protocols (e.g., OWASP Top 10, SSL/TLS, OAuth)
• Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, or Nessus
• Experience with cloud security principles and best practices (e.g., AWS, GCP)
• Proven experience in mentoring and upskilling team members, with a focus on building strong relationships across multidisciplinary teams.
• Excellent communication skills and ability to effectively communicate security risks and recommendations to technical and non-technical stakeholders as well as management 
• Experience working with large-scale R&D environments

Bonus Points:

• Introduced by an AppsFlyer team member

As a global company operating from 25 offices across 19 countries, we reflect the human mosaic of the diverse and multicultural world in which we live. We ensure equal opportunities for all of our employees and promote the recruitment of diverse talents to our global teams without consideration of race, gender, culture, or sexual orientation. We value and encourage curiosity, diversity, and innovation from all our employees, customers, and partners.

“As a Customer Obsessed company, we must first be Employee Obsessed. We need to make sure that we provide the team with the tools and resources they need to go All-In.” Oren Kaniel, CEO