Application Security Engineer

Please note that we will never request payment or bank account information at any stage of the recruitment process. As we continue to grow our teams, we urge you to be cautious of fraudulent job postings or recruitment activities that misuse our company name and information. Please protect your personal information during any recruitment process. While Monks may contact potential candidates via LinkedIn, all applications must be submitted through our official website (monks.com/careers).

About the Role

As an Application Security Engineer, you will drive the planning, execution, and continuous enhancement of tactical security initiatives to safeguard critical applications for a leading global client in the electronic trading technology sector. This role empowers you to represent security in all facets of the secure software development lifecycle, spearhead DevSecOps best practices, and collaborate with global engineering and product teams to advance application security.

Responsibilities

• Represent application security in the development and implementation of security tooling and practices within the secure software development lifecycle (S-SDLC)
• Act as a subject matter expert in DevSecOps methodologies, advising teams on security testing and remediation strategies
• Administer, monitor, and optimize a suite of application security tools, ensuring comprehensive coverage and effectiveness
• Lead both manual and automated security testing activities, including application penetration testing
• Perform secure code reviews across a range of languages, including Python, C++, C#, Java, and JavaScript
• Develop, compile, and deliver robust set of security metrics, dashboards, and reports for stakeholders
• Assist in the creation and regular maintenance of technical documentation, procedures, and playbooks for application security operations
• Collaborate with global teams and contribute to cross-functional security initiatives
• Other duties as assigned

About You

Qualifications & Skills

• 7+ years of relevant experience in application security, with proven expertise leading technical security initiatives
• 5+ years of hands-on application penetration testing experience
• Advanced knowledge of application vulnerability identification, triage, and risk exposure assessment
• In-depth understanding of REST-based architectures and corresponding security implementation technologies
• Proficiency with SAST, DAST, IAST, and modern CI/CD tools
• Hands-on experience with Application Security Posture Management (ASPM) solutions
• Strong capability to perform secure code reviews in Python, C++, C#, Java, and JavaScript
• Demonstrated ability to develop and maintain security metrics, reporting, and supporting documentation
• Excellent analytical, critical thinking, and problem-solving skills
• Ability to work independently with minimal supervision, as well as collaboratively across global teams
• OSCP, OSWE, or comparable certifications preferred

At .Monks Technology Services, we believe in fostering an environment where a diversity of perspectives can thrive. We proactively work to design hiring processes that promote equity and inclusion while mitigating bias. We celebrate diversity and are committed to building a team that reflects the communities we serve. We welcome and encourage qualified applicants, from all backgrounds, who are excited to contribute to our mission

#LI MB5 #LI- Remote

About Monks

Monks is the global, purely digital, unitary operating brand of S4Capital plc. With a legacy of innovation and specialized expertise, Monks combines an extraordinary range of global marketing and technology services to accelerate business possibilities and redefine how brands and businesses interact with the world. Its integration of systems and workflows delivers unfettered content production, scaled experiences, enterprise-grade technology and data science fueled by AI—managed by the industry’s best and most diverse digital talent—to help the world’s trailblazing companies outmaneuver and outpace their competition.

Monks was named a Contender in The Forrester Wave™: Global Marketing Services. It has remained a constant presence on Adweek’s Fastest Growing lists (2019-23), ranks among Cannes Lions' Top 10 Creative Companies (2022-23) and is the only partner to have been placed in AdExchanger’s Programmatic Power Players list every year (2020-24). In addition to being named Adweek’s first AI Agency of the Year (2023), Monks has been recognized by Business Intelligence in its 2024 Excellence in Artificial Intelligence Awards program in three categories: the Individual category, Organizational Winner in AI Strategic Planning and AI Product for its service Monks.Flow. Monks has also garnered the title of Webby Production Company of the Year (2021-24), won a record number of FWAs and has earned a spot on Newsweek’s Top 100 Global Most Loved Workplaces 2023.

We are an equal-opportunity employer committed to building a respectful and empowering work environment for all people to freely express themselves amongst colleagues who embrace diversity in all respects. Including fresh voices and unique points of view in all aspects of our business not only creates an environment where we can all grow and thrive but also increases our potential to produce work that better represents—and resonates with—the world around us.