Application Security Engineer/ APPSEC

Company Description

Intensity Global (IG) Group is a cybersecurity technology consulting company specializing in information security, incident response, and cyber intelligence. Since its founding in 2008, the company has focused on protecting organizations against sophisticated cyber threats, including zero-day exploits, ransomware, malware, and advanced persistent threats. With offices in North America (Saint Louis, USA), Asia Pacific (Melbourne, Australia), and Europe and the Middle East (Netanya/Poleg, Israel), IG delivers cutting-edge solutions by leveraging advanced Israeli cyber technologies and the expertise of its cybersecurity researchers and experts. The company serves a diverse client base, including governments, telecommunications, financial institutions, technology companies, insurance firms, and defense organizations.

Role Description

This is a full-time hybrid role for an Application Security Engineer located in the Tel Aviv District, Israel, with flexibility for partial remote work. In this role, you will be responsible for securing applications by analyzing and addressing vulnerabilities, conducting security assessments, implementing security measures, and collaborating with cross-functional teams. You will also review code for potential security weaknesses, monitor systems for suspicious activity, and collaborate in defining security best practices for development teams.

• Provide security guidance and consultancy for technological projects from an application security perspective throughout the full Software Development Life Cycle (SDLC), from initiation through production.
• Define and lead application security policies.
• Write secure development policies, standards, and procedures.
• Deliver secure development training to development teams in cloud environments (Azure, AWS).
• Identify, assess, and manage security risks; provide solutions for vulnerabilities and security gaps across development and production environments.
• Implement and manage application security protection technologies, including Web Application Firewalls (WAF).

• At least 5 years of experience in Application Security.
• Proven experience working closely with development and infrastructure teams.
• Strong hands-on experience in Application Security.
• Experience with secure development methodologies.
• Experience in API Management and API Security.
• Familiarity and hands-on experience with tools such as Imperva, F5, Cloudflare, Radware, and IBM DataPower.
• This role is ideal for a security professional who enjoys working at the intersection of development, cloud, and security.