Position Overview: As a Senior App Sec Engineer, you will be part of office of the Chief Information Security Officer reporting to the Head of Product & Solution Security for Siemens DI SW. This role work closely with our developer teams and play an important role to ensures that every step of the software development and operation lifecycle (SDLC) follows security best practices. Responsible for adhering to secure coding principles and guiding in testing the application against security risks/parameters before release. As a senior security engineer, you will Work with developers to provide repetitive validation of application security measures. Experience building controls in a 100% cloud-based infrastructure Coordinate and enhance trustworthy relations amongst stakeholders. Proactively harden product’s application security posture. Provide subject-matter expert (SME) level input on secure coding, architecture, and automation. Participate in and support application security efforts, such as security/code reviews and threat modelling. Required Knowledge/Skills, Education and Experience: BA or BS degree or 12+ years of experience with the design and development of cloud security architectures 7+ years of experience as application security engineer for design and development of cloud security architectures. 5+ years’ experience in setting up Coverity or SonarQube or other SAST tools and auditing security findings. Strong ability to develop automation with at least one scripting languages such as Go, TypeScript, Python Prior software development experience: C/C++ or Java or Node JS is a plus. Hands on experience on automation techniques in DevSecOps, e.g. how to integrate and automate SAST/DAST/SCA tools in the SDLC process and serve as a tool-smith for the dev teams. Excellent communication and presentation skills and able to lead and coach junior security engineers to improve their skills and effectiveness Preferred Knowledge/Skills, Education and Experience: BA or BS degree in CS, Systems Analysis, or a related field Knowledge and experience with vulnerability assessments, application penetration testing, and a solid understanding of network and web protocols. Experience with cloud environments and containerization technologies, and experience with modern microservice design principles. Experience with one or more of the following: AWS, Azure, GCP, or VMware implementations Knowledge of cloud computing technologies business drivers and emerging computing trends Knowledge of business process reengineering principles and processes At Siemens we are always challenging ourselves to build a better future. We need the most innovative and diverse Digital Minds to develop tomorrow’s reality. Find out more about the Digital world of Siemens here: www.siemens.com/careers/digitalminds Where permitted by applicable law, Siemens may require employees to be fully vaccinated against COVID-19 based on job requirements, and in accordance with an accommodation based on legally protected reasons. #LI-PLM #LI-DK1 Organization: Digital Industries Company: Siemens Industry Software Inc. Experience Level: Experienced Professional Job Type: Full-time Equal Employment Opportunity Statement Siemens is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability unrelated to ability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, order of protection status, protected veteran or military status, or an unfavorable discharge from military service, and other categories protected by federal, state or local law. EEO is the Law Applicants and employees are protected under Federal law from discrimination. To learn more, Click here. Pay Transparency Non-Discrimination Provision Siemens follows Executive Order 11246, including the Pay Transparency Nondiscrimination Provision. To learn more, Click here. California Privacy Notice California residents have the right to receive additional notices about their personal information. To learn more, click here.