Principal Application Security Engineer

The Principal Application Security Engineer at Diligent Corporation will serve as the senior technical authority on application security, guiding the design, development, and operation of secure cloud-based web and mobile products. This role involves close collaboration with Product, Engineering, and Operations teams to embed security throughout the software development lifecycle, particularly for platforms like Diligent Entities and Diligent Analytics.

Key responsibilities include leading the application security strategy across multiple SaaS platforms, integrating security practices into the SDLC through threat modeling, secure design, code reviews, and pre-production testing. The engineer will identify and remediate application vulnerabilities, define secure coding standards for technologies such C#, and AngularJS, and act as a technical advisor to leadership on complex security issues.

Candidates should have substantial experience (typically 12+ years) in application design and development for web and/or mobile applications, with a strong understanding of application security concepts and internet technologies. Proficiency in core technologies C#, and AngularJS, experience with application security tools, and familiarity with security standards relevant to SaaS are essential. Excellent communication and leadership skills are also required.

Diligent offers a flexible work environment, comprehensive health benefits, generous time-off policies, and wellness programs. The company fosters a culture of innovation and collaboration, providing opportunities for professional growth and development in a global setting.