Application Security Engineer

Application Security Engineers identify risks and drive improvements in applications.

Role overview

The Application Security Engineer develops and tests security components that make an application more secure. They proactively test their security posture from an attacker's perspective, help shape engineering best practices, improve and drive application security monitoring, and work with the security team to educate engineers on emerging threats.

Application Security Engineers
may also be referred to as:
Application And API Security Architect
Application Security Architect
Application Security Engineer
Appsec Engineer
Ethical Hacker Application Security
Information Security Applications Code Assessor
Security Application Engineer
Web Application Engineer

Career Path

Map your career path by understanding role relationships

Average Salary

Based upon experience, salary for this role ranges from:
National Average
* based upon those with two plus years of cybersecurity experience


Defining and embedding technical security policies, principles, and standards within the application.
Driving and supporting application security reviews and threat modeling, including code review and dynamic testing.
Managing and performing application security vulnerability management.
Facilitating and supporting the preparation of security releases.
Supporting and consulting with product and development teams in the area of application security.
Creating and leading security training for their team.
Assisting in the development of automated security testing to ensure the organization is following best practices.

Tools & Environment

Application Security Engineers need to use tools like Java, Scala, Typescript, Python, and Javascript, coding and scripting, and security assurance tools. They also need experience securing public-facing endpoints and remediating vulnerabilities found in code.


[cyber_job_role_count] Application Security Engineer jobs



Watch our latest videos, talks an recorded events

White Papers

Download our whitepapers and printed resources

Free Courses

Browse our training courses and educational resources
See All


Listen to our podcast features and recorded roundtables

The CyberSN™ Provider Exchange

The training courses, services, products, and DEI providers you need to take control and accelerate your success.


Get in touch to see your product, training course, service, or DEI support on our provider exchange.
Career Acceleration and Training Community Hub

Cyber Leadership Institute

Join the Cyber Leadership Institute Community Hub and benefit from the shared knowledge and experience of a global community of cyber leaders.
A game-changing personal branding program for technical professionals

Stand Out From the Crowd With a Strong Personal Brand (EPB)

The Elevate Your Personal Brand (EPB) program helps technical professionals develop a strong personal brand quickly. This short, intensive, and self-paced course will help you develop, monetize, and sustain an outstanding personal brand
Learn real-world cyber risk management and governance skills from renowned industry leaders

Cyber Skills for Non-Technical Business Leaders (ECRP)

The Executive Cyber Resilience Program (ECRP) has been designed to help non-technical business leaders better understand cyber risk and how it impacts their organization.
For executives in charge of cyber-resilience strategies

Cyber Strategy and Transformational Leadership Skills (CSTP)

The Cyber Strategy and Transformation Program (CSTP) is the ultimate course for senior leaders and project managers responsible for leading cyber strategies and transformation programs across their organizations.
A leadership program for current and aspiring CISOs

Cyber Leadership Program for Experienced Professionals (CLP)

The Cyber Leadership Program (CLP) is an advanced, executive-level program for experienced cyber professionals who want to develop their leadership, executive and board engagement skills and become a leading CISO.

Get our latest insights. Subscribe to our newsletter.