[Remote] Director Application Security Engineering
Note: The job is a remote job and is open to candidates in USA. Caesars Entertainment is seeking a dynamic and experienced Director of Application Security Engineering to lead their application security efforts. This role is pivotal in driving a 'shift left' security culture and involves defining and executing the application security strategy while collaborating with various teams to minimize vulnerabilities and reduce risk.ResponsibilitiesDevelop and implement a comprehensive application security strategy aligned with business objectives, focusing on automation and proactive security measuresLead, mentor, and grow a small team of application security engineers, fostering a culture of innovation, collaboration, and continuous improvementChampion the 'shift left' security philosophy, embedding security considerations early in the SDLCDrive the implementation and optimization of automated security testing tools and processes, including SAST, DAST, SCA, and IASTIntegrate security testing seamlessly into CI/CD pipelines, enabling continuous security monitoring and remediationLead the evaluation, selection, implementation, and optimization of new application security technology solutionsEvaluate and manage relationships with security tool vendors, ensuring optimal performance and cost-effectivenessMentor and guide junior application security engineers, providing technical expertise and fostering professional developmentCollaborate with cross-functional teams to continuously improve application security processes, tools, and workflowsIdentify opportunities to enhance the identification, assessment, and remediation of software issues and vulnerabilitiesDevelop and implement scripts and workflows to streamline operations and reduce manual effortStay current with emerging security threats, software development practices and platforms, software vulnerabilities, and industry best practicesClosely partner with development teams to drive secure coding practices and application security principlesEffectively communicate complex technical issues to both technical teams and non-technical stakeholdersPrepare and deliver reports, dashboards, and presentations to leadership and other departmentsBuild strong relationships with IT, DevOps, and business units to ensure alignment on security objectivesSkills10+ years of experience in Cybersecurity or a related technology risk role, with a focus on engineering and application security5+ years of experience in a leadership role, managing and mentoring security and/or engineering teamsDeep understanding of application security principles, OWASP Top 10, and common vulnerabilitiesProven experience in software development, with a strong understanding of secure coding practices and software architectureIn-depth knowledge of application security principles, including threat modeling, vulnerability assessment, and secure code reviewHands-on experience with security tools such as static and dynamic analysis tools, penetration testing frameworks, and security monitoring solutionsStrong experience integrating security testing into CI/CD pipelines using tools like Jenkins, GitLab CI, or Azure DevOpsProficiency in scripting languages (e.g., Python, Bash) and infrastructure-as-code tools (e.g., Terraform, CloudFormation)Knowledge of cloud security principles and best practices (AWS, Azure, GCP)Proven ability to mentor, lead, and develop application security engineersExcellent verbal and written communication skills; ability to present technical concepts clearlyStrong teamwork skills and the ability to work with diverse teams across the organizationAnalytical mindset with the ability to troubleshoot complex security issuesAbility to thrive in a fast-paced and evolving cybersecurity environmentRelevant certifications such as AWS Certified Security Specialty, CISSP, GCIH, or GCED are preferredCompany OverviewCaesars Entertainment, Inc. is the largest casino-entertainment Company in the U.S. It was founded in 1999, and is headquartered in Las Vegas, Nevada, USA, with a workforce of 10001+ employees. Its website is https://www.caesars.com/paris-las-vegas.