Application Security Engineer

Application Security Engineers identify risks and drive improvements in applications.

Role overview

The Application Security Engineer develops and tests security components that make an application more secure. They proactively test their security posture from an attacker's perspective, help shape engineering best practices, improve and drive application security monitoring, and work with the security team to educate engineers on emerging threats.

Application Security Engineers
may also be referred to as:
Application And API Security Architect
Application Security Architect
Application Security Engineer
Appsec Engineer
Ethical Hacker Application Security
Information Security Applications Code Assessor
Security Application Engineer
Web Application Engineer

Career Path

Map your career path by understanding role relationships

Average Salary

Based upon experience, salary for this role ranges from:
National Average
* based upon those with two plus years of cybersecurity experience


Defining and embedding technical security policies, principles, and standards within the application.
Driving and supporting application security reviews and threat modeling, including code review and dynamic testing.
Managing and performing application security vulnerability management.
Facilitating and supporting the preparation of security releases.
Supporting and consulting with product and development teams in the area of application security.
Creating and leading security training for their team.
Assisting in the development of automated security testing to ensure the organization is following best practices.

Tools & Environment

Application Security Engineers need to use tools like Java, Scala, Typescript, Python, and Javascript, coding and scripting, and security assurance tools. They also need experience securing public-facing endpoints and remediating vulnerabilities found in code.


[cyber_job_role_count] Application Security Engineer jobs



Watch our latest videos, talks an recorded events

White Papers

Download our whitepapers and printed resources

Free Courses

Browse our training courses and educational resources
See All


Listen to our podcast features and recorded roundtables

The CyberSN™ Provider Exchange

The training courses, services, products, and DEI providers you need to take control and accelerate your success.
Cybersecurity Training Made Affordable and Accessible


Cybrary’s industry-leading platform provides guided pathways, threat-informed training, and certification preparation to fully equip cybersecurity professionals at every stage in their careers to skill up and confidently mitigate threats.


Get in touch to see your product, training course, service, or DEI support on our provider exchange.
CyberSecurity For Beginners

Security Sorceress

A course designed to bring a learner from knowing nothing about cybersecurity to knowing the foundations of security. Career advice and group coaching. Prepare for the Security + exam. Financing available.
Career Acceleration and Training Community Hub

Cyber Leadership Institute

Join the Cyber Leadership Institute Community Hub and benefit from the shared knowledge and experience of a global community of cyber leaders.
A game-changing personal branding program for technical professionals

Stand Out From the Crowd With a Strong Personal Brand (EPB)

The Elevate Your Personal Brand (EPB) program helps technical professionals develop a strong personal brand quickly. This short, intensive, and self-paced course will help you develop, monetize, and sustain an outstanding personal brand
For executives in charge of cyber-resilience strategies

Cyber Strategy and Transformational Leadership Skills (CSTP)

The Cyber Strategy and Transformation Program (CSTP) is the ultimate course for senior leaders and project managers responsible for leading cyber strategies and transformation programs across their organizations.

Get our latest insights. Subscribe to our newsletter.