Job Description
Job Summary :
The Cybersecurity Engineer Application Security & Secure Configuration Baseline leads the design, implementation, and governance of application security controls and secure configuration baselines across Cenlars cloud and on-premise environments.
This role is responsible for establishing and maintaining hardened configurations aligned with CIS Benchmarks, Azure Security Baselines, GPOs, and cloud blueprints, ensuring consistent enforcement of Cenlars security standards.
The engineer partners with Security, IT, and business stakeholders to embed secure-by-design principles, support vulnerability remediation, automate configuration management, and ensure compliant deployments throughout the lifecycle.
This work materially impacts the confidentiality, integrity, and availability of Cenlars platforms and data.
Job Responsibilities :
- Serves as the Subject Matter Expert for Application Security and Secure Configuration Baselines, defining and maintaining enterprise security hardening standards (CIS, Azure baselines, GPOs, cloud blueprints).
- Leads the development and automation of reusable secure configuration baselines for applications, operating systems, cloud services, and infrastructure components.
- Conducts configuration drift analysis, assesses compliance against baselines, and drives remediation with system and application owners.
- Implements application security controls including secure coding requirements, SAST/DAST/IAST integrations, secrets management, and security design reviews.
- Partners with Corporate Security, Cloud Engineering, and Application Development teams to ensure alignment of deployments to approved configuration baselines.
- Authors and maintains secure configuration standards, security hardening guides, workflows, runbooks, and technical documentation.
- Performs proactive analysis to identify misconfigurations, cloud security risks, and vulnerabilities; leads mitigation planning and execution.
- Collaborates with CI/CD engineering teams to embed automated enforcement of security baselines via pipelines and infrastructure-as-code.
- Provides technical leadership in cloud application security, automation, compliance, and secure configuration engineering across Azure and SaaS platforms.
- Supports enterprise security awareness initiatives related to application security and baseline compliance.
- Monitors emerging technologies, regulations, and best practices to continuously strengthen Cenlars application security posture.
- Builds cross-functional relationships ensuring secure configuration governance is adopted and enforced across teams.
- Assesses risk in alignment with Cenlar policies, regulatory expectations, and ethical standards, escalating concerns and ensuring accountability where needed.
Requirements, Education, Experience :
- Bachelors degree in Computer Science, Information Systems, Cybersecurity, Data Engineering, or equivalent practical experience; Masters degree preferred.
- 5+ years of IT or cybersecurity engineering experience, with a focus on application security or secure configuration management.
- Hands-on experience implementing CIS Benchmarks, Microsoft Azure security baselines, GPO hardening, and cloud blueprint governance.
- Experience with SAST/DAST tools, threat modeling, secure coding practices, and application security lifecycle processes.
- Strong understanding of authentication, authorization, encryption, and modern application architectures.
- Experience with Azure, security tooling, DevSecOps integration, and cloud security architecture.
- Preferred Certifications : OSWA, OSWE, CSSLP, CISSP, CCSP, Azure Security Engineer Associate, or equivalent
No Referrers Available
There are currently no referrers available for this job. You can still apply, will let you know once there is any referrer available.
