Application Security Engineer

Application Security Engineers identify risks and drive improvements in applications.

Role overview

The Application Security Engineer develops and tests security components that make an application more secure. They proactively test their security posture from an attacker's perspective, help shape engineering best practices, improve and drive application security monitoring, and work with the security team to educate engineers on emerging threats.

Application Security Engineers
may also be referred to as:
Application And API Security Architect
Application Security Architect
Application Security Engineer
Appsec Engineer
Ethical Hacker Application Security
Information Security Applications Code Assessor
Security Application Engineer
Web Application Engineer

Career Path

Map your career path by understanding role relationships

Average Salary

Based upon experience, salary for this role ranges from:
National Average


Defining and embedding technical security policies, principles, and standards within the application.
Driving and supporting application security reviews and threat modeling, including code review and dynamic testing.
Managing and performing application security vulnerability management.
Facilitating and supporting the preparation of security releases.
Supporting and consulting with product and development teams in the area of application security.
Creating and leading security training for their team.
Assisting in the development of automated security testing to ensure the organization is following best practices.

Tools & Environment

Application Security Engineers need to use tools like Java, Scala, Typescript, Python, and Javascript, coding and scripting, and security assurance tools. They also need experience securing public-facing endpoints and remediating vulnerabilities found in code.


[cyber_job_role_count] Application Security Engineer jobs



Watch our latest videos, talks an recorded events

White Papers

Download our whitepapers and printed resources

Free Courses

Browse our training courses and educational resources
See All


Listen to our podcast features and recorded roundtables

The CyberSN™ Provider Exchange

The training courses, services, products, and DEI providers you need to take control and accelerate your success.


Get in touch to see your product, training course, service, or DEI support on our provider exchange.

Cyber Security Cloud & SaaS Solutions Outfitter

Invest in Turbo Charging Cyber Security Solutions – Faster Incident Detection, Response and Recovery Times – Get Access To Over 100 New and Emerging Cloud and Cyber Security Software Solutions

Cybersecurity, Risk Management, Continuity of Operations, and Data Protection & Governance

You need expertise to help you manage risk and protect your data from cyber attacks. Whether it’s strategy, cloud security, compliance, or anything in between, Vertex11 is your ultimate resource for getting the job done.
ESCALATE | Point3 Security

Identify Highly Skilled Individuals with ESCALATE Talent Screening

Traditional hiring has a couple of flaws. Human biases prevent good hires. Over-reliance on certifications and years of experience & HR Software and AI often removes top performers. With ESCALATE Talent Screening, your candidates physically demonstrate necessary skills, informing your hiring process far beyond certs or years of experience.
Rapid Ascent, Inc

Ascend with a Career in Cybersecurity

Hands-on, on-the-job training using state-of-the-art AI, gamified live-fire threats with real-world projects, and coaching from industry experts.

A Cybersecurity SaaS Ecosystem

CYRISMA combines Data Discovery/Data Loss Prevention, Vulnerability Scanning, Configuration Hardening, Score Card Evaluation, Various Reporting and Mitigation planning and Mitigation Execution in a single web-based platform generating Monthly Recurring Revenue for the MSSP.

Get our latest insights. Subscribe to our newsletter.