ADP is hiring a Senior Application Security Engineer in our Alpharetta, GA or Roseland, NJ office.
This is a hybrid role.
Overview:
We are seeking a Senior Application Security Engineer to secure our software supply chain by assessing, governing, and mitigating risks associated with open-source software. This role partners closely with engineering, DevOps, and security teams to drive secure OSS adoption at scale.
What You’ll Do
- Generate and analyze SBOMs and conduct OSS security assessments using tools like Snyk and Syft.
- Evaluate and onboard security tools through POCs.
- Build and operate cloud-based data pipelines to identify vulnerabilities, license risks, and supply chain threats.
- Develop dashboards and reports to communicate security risk to engineering teams and leadership.
- Design and integrate OSS security tooling, including JFrog Artifactory/Xray or Sonatype Nexus/Lifecycle.
- Partner with engineering teams to guide secure open-source usage and remediation.
- Support incident response efforts, including zero-day vulnerability management.
- Create OSS security standards, documentation, and training materials.
Like what you see? Apply now!
Learn more about ADP at tech.adp.com/careers
Experience You’ll Need
- 7+ years of experience in cybersecurity, application security, or software supply chain security.
- Hands-on experience with SBOMs, OSS scanning tools, and vulnerability management.
- Experience with JFrog or Sonatype artifact repository platforms.
- Strong background in cloud-native security and automation.
- Primary qualification: Python, AWS + Kubernetes + SQL + Security certifications (CISSP, CSSLP, etc.) are a plus
TO SUCCEED IN THIS ROLE:
- You'll have a bachelor’s degree in computer science, Information Security, or related field (or equivalent experience).
Skills & Technologies
- Programming: Python; npm / Node.js ecosystems
- Cloud & Platforms: AWS, Kubernetes, SQL
- OSS & Supply Chain: JFrog Artifactory/Xray, Sonatype Nexus/Lifecycle
- Reporting & Monitoring: Amazon QuickSight, Prometheus
Qualifications
- Knowledge of OWASP, NIST, and secure SDLC practices.
- Strong communication and cross-functional collaboration skills.
- Security certifications (CISSP, CSSLP, etc.) are a plus.
YOU'LL LOVE WORKING HERE BECAUSE YOU CAN:
- Have courageous team collaboration. Courage comes from how associates are willing to have difficult conversations, speak up, be an owner, and challenge one another's ideas to net out the best solution.
- Deliver at epic scale. We deliver real user outcomes using strong judgment and good instincts. We're obsessed with the art of achieving simplicity with a focus on client happiness and productivity.
- Be surrounded by curious learners. We align ourselves with other smart people in an environment where we grow and elevate one another to the next level. We encourage our associates to listen, stay agile, and learn from mistakes.
- Act like an owner & doer. Mission-driven and committed to leading change, you will be encouraged to take on any challenge and solve complex problems. No tasks are beneath or too great for us. We are hands-on and willing to master our craft.
- Give back to others. Always do the right thing for our clients and our community and humbly give back to the community where we live and work. Support our associates in times of need through ADP's Philanthropic Foundation.
- Join a company committed to equality and equity. Our goal is to impact lasting change through our actions.
What are you waiting for? Apply today!
Find out why people come to ADP and why they stay: https://youtu.be/ODb8lxBrxrY
(ADA version: https://youtu.be/IQjUCA8SOoA )
Qualifications
#LI-SD4
#LI-Hybrid