At a Glance
- Tasks: Conduct security assessments and develop innovative solutions to enhance product security.
- Company: Ivanti is a global leader in IT systems and security management, fostering a diverse and inclusive culture.
- Benefits: Enjoy competitive salary, flexible hours, and a focus on professional development.
- Other info: Remote work options available; commitment to diversity and inclusion in hiring.
- Why this job: Join a dynamic team making a real impact in cybersecurity while enjoying a healthy work-life blend.
- Qualifications: 5+ years in web application security with strong technical knowledge of vulnerabilities and secure coding practices.
The predicted salary is between 48000 - 84000 £ per year.
Are you an experienced Staff Security Engineer driven to deliver cutting-edge security solutions and champion technical excellence? At Ivanti, you will play a pivotal role in shaping the future of secure digital work by designing and enhancing world-class products used across the globe. Join our dynamic, collaborative team and make a meaningful difference—helping organizations thrive securely in a fast-paced, ever-evolving digital landscape. Your expertise will help safeguard countless users, while empowering innovation at every level.
Why this role matters
As a Staff Security Engineer at Ivanti, you play a crucial role in safeguarding our products and users against evolving threats. Your work ensures trust and resilience in our technology, helping organizations worldwide operate securely and innovate with confidence.
What you’ll do:
- Manage the integration of security best practices throughout all phases of the software development lifecycle, ensuring robust protection of Ivanti’s products, services, and IT assets.
- Build innovative and scalable security tools, processes, and solutions to proactively detect, remediate, and mitigate vulnerabilities across large and complex codebases.
- Design secure architectures, perform comprehensive threat modeling, and lead penetration testing and code reviews on both web and mobile applications to maintain the highest levels of security.
- Partner with development, operations, and architecture teams to deeply embed security into DevOps practices and foster a culture of continuous security awareness throughout the organization.
- Lead security education initiatives by delivering clear, actionable training and documentation to cross-functional teams, and by driving vulnerability remediation efforts with stakeholders of varying technical backgrounds.
- Collaborate with global product and engineering teams, business leaders, and third-party security vendors to interpret vulnerability reports and coordinate effective security solutions and disclosure programs.
- Advise stakeholders on prioritizing vulnerabilities, implementing secure coding standards, applying cryptographic techniques, and adopting industry-leading security protocols and compliance practices.
What you will bring:
- Over 8 years of experience in web application security, with deep technical knowledge of both common and advanced security vulnerabilities, exploitation techniques, and practical remediation strategies.
- Proven expertise in applied cryptography, threat modeling, vulnerability assessment (including CVSS scoring and penetration testing), as well as secure software development practices across SSDLC and CI/CD pipelines.
- Experience implementing and maintaining security tools and processes for large-scale codebases (such as SAST, SCA, DAST, container scanning), and providing secure coding education to developers.
- Strong programming skills (preferably in Python), with the ability to explain complex security topics clearly to diverse technical and non-technical stakeholders.
- Demonstrated ability to work cross-functionally in collaborative environments, contributing to responsible disclosure, bug bounty, and vulnerability management programs, as well as securing cloud and SaaS environments at scale.
Why Ivanti?
- Remote-friendly, flexible schedules: Empower excellence in every setting and elevate human potential.
- Competitive compensation & total rewards: Including health, wellness, and financial plans tailored for you and your family.
- Global, diverse teams: Collaborate with talented people from 23+ countries.
- Learning & development: Grow your skills with access to best-in-class learning tools and programs.
- Equity & belonging: We value every voice. Your story helps inform our solutions for a changing world.
What drives us
Ivanti’s mission is to elevate human potential within organizations by managing, protecting and automating technology for continuous innovation.
It is through diverse and inclusive hiring, decision-making, and commitment to our employees and partners that we will continue to build and deliver world-class solutions for our customers.
To learn more about Ivanti’s Mission and Core Values.
Inclusion at Ivanti
Ivanti is proud to be an Equal Opportunity Employer. We’re committed to building a diverse team and fostering an inclusive environment where everyone belongs. We welcome applicants from all backgrounds and walks of life.
Need adjustments during the process? Reach out to talent@ivanti.com— we’re happy to help.
Ready to make your mark?
Apply today and shape the future of Everywhere Work with Ivanti!
#L1-SHUBHANGI
Staff Application Security Engineer employer: Ivanti
Ivanti is an exceptional employer that prioritises a healthy work-life blend and fosters a culture of inclusivity and collaboration. With a strong commitment to employee development, competitive salaries, and flexible working hours, Ivanti empowers its staff to thrive in their careers while contributing to innovative solutions in IT security. Located in Scotland, employees benefit from being part of a global team that values diverse perspectives and champions professional growth.
StudySmarter Expert Advice🤫
We think this is how you could land Staff Application Security Engineer
✨Tip Number 1
Familiarise yourself with Ivanti's products and services. Understanding their specific security needs and challenges will help you tailor your discussions during interviews, showcasing your knowledge and enthusiasm for the role.
✨Tip Number 2
Network with current or former Ivanti employees on platforms like LinkedIn. Engaging with them can provide valuable insights into the company culture and expectations, which can be beneficial when preparing for interviews.
✨Tip Number 3
Stay updated on the latest trends in application security and vulnerabilities. Being able to discuss recent developments or case studies during your interview will demonstrate your passion and commitment to the field.
✨Tip Number 4
Prepare to discuss your experience with threat modelling and secure coding practices. Be ready to share specific examples of how you've implemented these in past roles, as this aligns closely with what Ivanti is looking for.
We think you need these skills to ace Staff Application Security Engineer
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights relevant experience in web application security, including specific projects or roles that demonstrate your skills in threat modelling, secure architecture, and vulnerability assessments. Use keywords from the job description to align your experience with what Ivanti is looking for.
Craft a Compelling Cover Letter:In your cover letter, express your passion for security and how your background aligns with Ivanti's mission. Mention specific experiences that showcase your ability to work collaboratively and your understanding of security vulnerabilities. Make it personal and engaging to stand out.
Showcase Your Technical Skills:Include a section in your application that lists your technical skills, particularly those mentioned in the job description, such as knowledge of cryptography, programming languages (like Python), and experience with CI/CD pipelines. This will help demonstrate your fit for the role.
Prepare for Potential Questions:Think about how you would explain complex security concepts to stakeholders with varying levels of technical knowledge. Be ready to discuss your approach to vulnerability remediation and any relevant experiences that highlight your problem-solving skills in security contexts.
How to prepare for a job interview at Ivanti
✨Understand Ivanti's Mission and Culture
Before your interview, take some time to research Ivanti's mission and values. Familiarise yourself with their commitment to diversity, inclusion, and the concept of 'Everywhere Work'. This will help you align your answers with their culture and demonstrate that you're a good fit.
✨Showcase Your Technical Expertise
Be prepared to discuss your experience with web application security, including specific vulnerabilities you've encountered and how you've addressed them. Highlight your knowledge of security assessments, threat modelling, and secure coding practices, as these are crucial for the role.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about past experiences where you identified and mitigated security vulnerabilities, and be ready to explain your thought process clearly and concisely.
✨Communicate Effectively with Non-Technical Stakeholders
Since you'll need to explain complex security concepts to stakeholders with varying technical backgrounds, practice articulating your thoughts in a simple and understandable manner. This skill is essential for ensuring everyone is on the same page regarding security measures.
