Key skills
JavaScriptTypeScriptPythonJavaGoRubyCommunicationPresentation SkillsPenetration Testing
About this role
Barracuda is a leading cybersecurity company providing complete protection against complex threats. As a Senior Application Security Engineer, you will help shape the future of the AppSec program by embedding security across the development lifecycle and driving strategic security initiatives across the product portfolio.
Responsibilities:
- Embed security across the development lifecycle, moving from pen-test/documentation-heavy to guardrail-driven programs
- Facilitate lightweight, feature-level threat models and drive risk-based discussions
- Perform hands-on application penetration tests and security-focused source code reviews
- Drive risk rating and vulnerability management processes
- Partner with product, platform, and engineering leads to drive security initiatives
- Lead outcome-focused design review discussions and security trainings
- Provide framework-specific remediation guidance to developers
Requirements:
- 5 - 8+ years in product-focused AppSec, with a track record of embedding security and reducing late-stage findings via automation and developer enablement
- Deep practical knowledge of core security concepts (authN/Z, session management, input/output handling, logging, data protection, access controls)
- Proficient in at least two programming languages (TypeScript/JavaScript, Python, Ruby, Java, Go, etc.)
- Hands-on experience with application penetration testing and code reviews
- Proficient in threat modeling and risk-based analysis
- Strong organizational, time-management, communication, and presentation skills