Senior Staff Information Security Engineer

US-TX-Coppell

Blackhawk Network

Req #: 22412
Type: Full Time
Apply
View All Jobs New Search
logo

Blackhawk Network
Connect With Us:
Connect To Our Company 
				Overview:

We are seeking a Senior Staff Application Security Engineer to join our Technology organization. Reporting to the Sr. Director of InfoSec, you will play a pivotal role in embedding security throughout our software development lifecycle (SDLC) and securing our cloud-native environments. This role blends technical expertise, strategic leadership, and cross-team collaboration to solve complex application and cloud security challenges and elevate the organization's security posture.

Responsibilities:

Application Security Leadership:

* Embed security into the SDLC, including requirements, design, development, and deployment phases.
* Define and promote secure coding practices across engineering teams.
* Perform security design reviews, threat modeling, and architecture assessments for applications, APIs, and microservices.

Cloud Security Enablement:

* Collaborate with cloud engineering teams to secure AWS environments, leveraging tools like GuardDuty, CloudTrail, Macie, and AWS Config.
* Ensure application security controls extend seamlessly into cloud-native workloads.

Risk Management:

* Conduct vulnerability assessments using SAST, DAST, and software composition analysis (SCA).
* Analyze findings, prioritize remediation, and track to resolution.
* Develop and implement risk mitigation strategies aligned with business needs.

Security Automation:

* Champion "security as code" by automating testing and remediation pipelines.
* Integrate security tooling into CI/CD workflows.

Incident Response & Resilience:

* Lead application-focused security investigations and support cloud-related incident response.
* Refine playbooks and response processes for efficient mitigation.

Collaboration & Mentorship:

* Partner with engineering, DevOps, and product teams to raise security maturity.
* Mentor junior engineers and advocate for a security-first mindset.

Qualifications:

Deep Application Security Expertise:

* Strong background in secure coding practices, API security, and software architecture.
* Hands-on experience with tools like SAST, DAST, SCA, and fuzzing platforms.

Cloud Security Knowledge:

* Solid understanding of AWS services (IAM, Lambda, S3, VPC) and AWS-native security tooling.
* Experience securing containerized and microservice-based environments.

Programming & Automation Skills:

* Proficiency in at least one programming language (e.g., Python, Java, Go).
* Familiarity with CI/CD pipelines and infrastructure as code (IaC).

Leadership & Communication:

* Ability to influence cross-functional teams and communicate effectively with technical and non-technical stakeholders.
* Strong problem-solving, analytical, and risk prioritization skills.

Certifications & Frameworks:

* Relevant certifications such as CISSP, CSSLP, or AWS Security Specialty preferred.
* Familiarity with security standards and frameworks (OWASP, NIST, ISO 27001).

Experience: 7+ years of experience in application security, cloud security, or related fields.

Why Join Us?

At Blackhawk Network, we believe security is not just a necessity but a catalyst for innovation. You'll have the opportunity to:

* Shape cutting-edge security strategies in a global organization.
* Work with a dynamic team that values collaboration, creativity, and continuous growth.
* Enjoy a culture that celebrates diverse perspectives and empowers you to make a lasting impact.

Ready to elevate your career and redefine what's possible in security? Join us and be part of a team that's transforming the future of technology.

Apply today!
Apply
Share this job:
Email

Blackhawk Network