Lead Application Security Engineer
Lead Application Security Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
$ 150000 - 190000
1 Vacancy
Job Description
WHO WE ARE
Zeta Global (NYSE: ZETA) is the AI-Powered Marketing Cloud that leverages advanced artificial intelligence (AI) and trillions of consumer signals to make it easier for marketers to acquire grow and retain customers more efficiently. Through the Zeta Marketing Platform (ZMP) our vision is to make sophisticated marketing simple by unifying identity intelligence and omnichannel activation into a single platform powered by one of the industrys largest proprietary databases and AI. Our enterprise customers across multiple verticals are empowered to personalize experiences with consumers at an individual level across every channel delivering better results for marketing programs. Zeta was founded in 2007 by David A. Steinberg and John Sculley and is headquartered in New York City with offices around the world. To learn more go to .
About the Role
Were looking for a highly skilled Lead Application Security Engineer to lead our application and platform security initiatives. Youll be responsible for embedding security into every stage of the development lifecycle from threat modeling through deployment ensuring secure-by-design practices are consistently applied. Zeta operates at significant scale supporting billions of consumer profiles and petabytes of data across real-time AI-powered marketing this role youll help safeguard our high-performance systems by driving best practices evaluating emerging threats and enabling cross-functional teams to build secure reliable applications.
This is a high-impact position with visibility across engineering product and executive leadership.
Key Responsibilities
Threat Modeling & Security Validation
Lead threat modeling and security architecture reviews for distributed event-driven systems.
Integrate security code reviews SAST/DAST Software Composition Analysis(SCA) and container scanning into CI/CD and AI/ML pipelines.
Coordinate and lead incident simulations specific to AI systems; oversee red/blueteam exercises to validate defensive posture.
Conduct security reviews of third-party vendors and tools to ensure alignmentwith enterprise security standards.
Embedding Security into the SDLC
Collaborate with engineers and product teams to build secure features withoutimpeding innovation.
Establish and lead security checkpoints across the software developmentlifecycle.
Review system designs architecture and data flow diagrams to identify andmitigate risks early.
Collaborate with key stakeholders to drive informed Go/No-Go security decisionsfor all major production deployments.
Emerging Threat Monitoring & Proactive Defense
Stay on the forefront of security innovations including OWASP cloud-native andAPI security practices.
Monitor modern threat vectors like LLM jailbreaks prompt injection and datapoisoning.
Recommend and implement forward-looking controls to safeguard AI models anddata platforms.Security Awareness & Policy Implementation
Evangelize secure coding and AI security through training brown bag sessionsand workshops.
Develop and roll out internal security policies standards and best practices.
Raise awareness of security threats through documentation and hands-onengagement.
Foster a security-first culture across engineering product and data teams.
What You Need to Succeed
Bachelors degree in Computer Science Cybersecurity or a related field orequivalent experience.
5 years of experience in Application Security DevSecOps or secure softwaredevelopment.
In-depth understanding of OWASP Top 10 SANS CWE Top 25 MITRE ATT&CKfor ML and adversarial threat modeling.
Experience securing modern frameworks and architectures (e.g. React FastAPI).
Familiarity with AI/ML attack vectors including model inversion adversarialexamples and training pipeline integrity.
Strong foundation in OAuth2 OpenID Connect JWT and securing APIs andmicroservices.
Experience with cloud-native security (e.g. AWS GCP Azure) and containertechnologies (e.g. Docker Kubernetes).
Strong communication and stakeholder management skills.
Nice to Have
Hands-on with tools like Semgrep Veracode Checkmarx SonarQube BurpSuite Zap Trivy Brakeman or LangSec.
Certifications such as OSCP CSSLP GWAPT or ML-specific certs (e.g. MITREATT&CK Defender for ML).
BENEFITS & PERKS
- Unlimited PTO
- Excellent medical dental and vision coverage
- Employee Equity
- Employee Discounts Virtual Wellness Classes and Pet Insurance And more!!
SALARY RANGE
The salary range for this role is $150000 - $190000 depending on location and experience.
PEOPLE & CULTURE AT ZETA
Zeta considers applicants for employment without regard to and does not discriminate on the basis of an individuals sex race color religion age disability status as a veteran or national or ethnic origin; nor does Zeta discriminate on the basis of sexual orientation gender identity or expression.
Were committed to building a workplace culture of trust and belonging so everyone feels invited to bring their whole selves to work. We provide a forum for employees to celebrate support and advocate for one another. Learn more about our commitment to diversity equity and inclusion here: IN THE NEWS!
Employment Type
Full Time
Key Skills
Similar Jobs
Dr. Job is an online platform that connects employers with skilled job seekers, facilitating the search for job opportunities and top talent. Established in 2015. Dr. Job Pro has emerged as the world premier job portal, attracting thousands of job seekers every day from all over the world.
Follow Dr.Job
Dr Job FZ LLC. 2025 © All Rights Reserved