Lead Cybersecurity - Application Security Engineer - Dynamic, Runtime & Api Security

AT&T

Alpharetta, Georgia, USA
Base: $128,400-$192,600 usd annual; bonus/equity: ...
**
5+ years application security experience
Dynamic application security testing (dast)
Runtime application self-protection (rasp)
** AT&T is seeking a Lead Cybersecurity Application Security Engineer to enhance the security of its applications and APIs. The role focuses on dynamic application security testing and runtime protection, requiring a strong background in web application and API security, along with hands-on technical skills. **

Job Summary

  • This role focuses on strengthening application and API security through dynamic testing, runtime protection, and AI-assisted capabilities.
  • The ideal candidate will partner closely with developers to identify vulnerabilities, validate exploitability, and implement durable remediation strategies.
  • AT&T offers a comprehensive benefits package including medical coverage, 401(k) matching, tuition reimbursement, and up to 23 days of vacation annually.

Matching Summary

Match Score: 75

** AT&T is seeking a Lead Cybersecurity Application Security Engineer to enhance the security of its applications and APIs. The role focuses on dynamic application security testing and runtime protection, requiring a strong background in web application and API security, along with hands-on technical skills. **

Salary

Base: $128,400-$192,600 USD Annual; Bonus/Equity: Not specified; Benefits: Medical/Dental/Vision, 401(k), Tuition Reimbursement, Paid Time Off

Skills & Requirements

Must-have

  • 5+ years application security experience
  • Dynamic Application Security Testing (DAST)
  • Runtime Application Self-Protection (RASP)
  • API Security engineering and discovery
  • CI/CD pipeline integration for security
  • OWASP Top 10 and API Top 10 knowledge
  • Python or Go scripting for automation

Nice-to-have

  • Experience with AI-assisted security workflows
  • Offensive security or bug bounty background
  • GraphQL specific security testing expertise
  • Internal security tool development experience
  • Service mesh and edge protection familiarity
  • Hands-on Kubernetes and container security
  • Advanced analytics for anomaly detection

Key Requirements

  • 5+ years in application security or secure software engineering
  • Proficiency in Python, Go, JavaScript, or Bash
  • Deep understanding of OWASP Top 10 and API Top 10
  • Experience implementing RASP in production environments
  • Ability to build automation scripts and lightweight tools

Work Rights

Not specified

Tailored Resume

Cover Letter