Hiring.Camp

Lead Application Security Engineer

Rgare

·

1 week ago

Salary
$127k – $189k
Location
Remote, Minnesota, United States of America
Workplace
Remote
Type
Full-time
Department
Engineering
Seniority
Lead
Closing date
1 week ago
Source
Workday

Description

You desire impactful work.
 

You’re RGA ready

RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 200 Company and listed among its World’s Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.

The Lead Application Security Engineer will help reduce risk across our application portfolio by partnering with engineers and product teams, coordinating external penetration tests, and turning findings into prioritized, trackable remediation work.  This position will run and configure application security tooling—SAST, DAST, SCA, and secrets scanning—integrating results into engineering workflows and helping teams focus on the fixes that matter most. 

Principle Duties

  • Coordinate external penetration tests (scoping, scheduling, access, and logistics) across multiple application teams. 

  • Partner with application owners to triage findings, validate impact, and prioritize remediation based on risk and business context. 

  • Operate, tune, and maintain SAST and SCA tooling (rulesets, baselines, false-positive management, and integrations) to improve signal-to-noise. 

  • Run and configure DAST scanning and validate results with engineering teams, including safe testing practices and environment coordination. 

  • Implement and operate secrets scanning across source control and CI/CD, and partner on prevention patterns (rotation, vaulting, and developer guidance). 

  • Integrate findings into ticketing and SDLC workflows, define SLAs, and track remediation progress to closure with clear ownership. 

  • Create lightweight standards, guidance, and enablement so application teams can remediate faster without security becoming a blocker. 

Education

  • Bachelor’s Degree in Arts/Sciences (BA/BS) or equivalent experience - Required

  • Master’s degree in Arts/Sciences (MA/MS) or professional industry certification - Preferred

Work Experience

  • 6+ years in application security, product security, or software engineering with a security focus. 

  • Experience coordinating and/or consuming third-party penetration tests and translating results into actionable remediation plans. 

Skills and Abilities

  • Strong hands-on skill with Terraform, Python, Bash, and CI/CD (Jenkins or equivalent). 

  • Hands-on experience running and configuring SAST, DAST, SCA, and secrets scanning in CI/CD or adjacent workflows. 

  • Strong understanding of common web and API vulnerabilities (e.g., OWASP Top 10) and practical remediation strategies. 

  • Comfort with Git-based workflows, build pipelines, and issue tracking; able to work with engineers where they are. 

  • Ability to communicate risk clearly and drive alignment on prioritization and timelines with application owners and stakeholders. 

  • Advanced oral and written communication skills demonstrating ability to share and impart knowledge. Ability to liaise with individuals across a wide variety of operational, functional, and technical disciplines. Advanced ability to translate business needs and problems into viable/accepted solutions.

  • Ability to quickly adapt to new methods, work under tight deadlines and stressful conditions. Ability to appropriately balance priorities, deadlines, and deliverables.

  • Advanced ability to set goals and handle multiple tasks, clients, and projects simultaneously. Advanced investigative, analytical and problem solving skills.

  • Ability to work well within a team environment and participate in department/team projects

  • Advanced skills in customer relationship management and change management. Advanced negotiating and persuasion skills

​​

#LI-CW1

#LI-Remote

What you can expect from RGA:

  • Gain valuable knowledge from and experience with diverse, caring colleagues around the world.

  • Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.

  • Join the bright and creative minds of RGA, and experience vast, endless career potential.

We’re excited to get to know you and connect your unique skills with our global opportunities. To create a modern and seamless experience, we use artificial intelligence (AI) in parts of our preliminary screening process. This technology helps us personalize job recommendations, automate interview scheduling, evaluate candidates based solely on experience—without considering name, gender, or other personal details—and provide real-time answers through our chatbot. AI is used only during early screening and never makes hiring decisions. Your RGA recruiter will work closely with you every step of the way to ensure the process feels personal, thoughtful, and focused on you.

Compensation Range:

$126,710.00 - $188,840.00 Annual

Base pay varies depending on job-related knowledge, skills, experience and market location. In addition, RGA provides an annual bonus plan that includes all roles and some positions are eligible for participation in our long-term equity incentive plan. RGA also maintains a full range of health, retirement, and other employee benefits.

RGA is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, age, gender identity or expression, sex, disability, veteran status, religion, national origin, or any other characteristic protected by applicable equal employment opportunity laws.

Skills

PythonTerraformJenkinsCI/CDGitChange Management

Similar Jobs

30

Application Security Lead

Vistex · Hoffman Estates, IL

3 weeks ago

Lead Application Security

Chevron Corporation is one of · Houston 1500 Louisiana Street, United States of America

1 month ago

Application Security Lead

Vistex · Hoffman Estates, IL

2 months ago

Application Security Lead

Hightouch · Remote (North America) · Remote

2 months ago

Application Security Lead

Prolific · Remote, UK +1 · Remote

2 months ago

Application Security, Lead

Toyota · Plano, United States of America

3 months ago

Lead, Application Security

Pru · Wash, 213 Washington St., Newark, NJ, United States of America

3 months ago

Lead Application Security Engineer

Nasdaq · CA-Toronto-York St 24/25, Canada +1 · Hybrid, Onsite

1 week ago

Lead Application Security Engineer

Carter's Careers · Buckhead Office, United States of America

2 weeks ago

Senior Lead Application Security Engineer

IFS · Vancouver, British Columbia, Canada · Hybrid

3 weeks ago

Capability Lead – Application Security

Nttlimited · hyderabad, India · Hybrid

3 weeks ago

Lead Application Security Engineer

Encora · Kuala Lumpur

3 weeks ago

Lead Application Security Engineer

Phia · Fairfax, VA

1 month ago

Devoteam Cyber Trust | Application Security - Lead | Banking Sector

Devoteam · Lisboa, Lisboa, Portugal · Hybrid

1 month ago

Application Security Lead / Manager

Iru · Miami · Hybrid

1 month ago

DevSecOps & Application Security Lead

JustMarkets · Remote, Europe · Remote

1 month ago

Lead Application Security Engineer

Athene · New York City 590 Madison Avenue, United States of America

1 month ago

Lead Application Security Engineer

Ilitch · Global Resource Center, United States of America

1 month ago

Lead Application Security Engineer

Bakerhughes · IN-MH-Pune-Cummins India Office Campus, 8th floor Survey No. 21, Balewadi +4

2 months ago

Lead Application Security Engineer

Nearshore Cyber · Remote

2 months ago

Identity and Application Security Lead

Athene · West Des Moines 7700 Mills Civic Parkway, United States of America

2 months ago

Lead Application Security Engineer

Adaptive Security · NYC · Onsite

3 months ago

Application Security Lead (Contractor)

Canon · UXBRIDGE, MIDDLESEX, United Kingdom, GB · Hybrid

4 months ago

Threat Engineering & Application Security Lead

Coca-Cola Europacific Partners · Bruxelles, Bruxelles,BE, BE +11

4 months ago

Lead Application Security Engineer

Inmobi · Bangalore, Karnataka, India

4 months ago

Security Specialist / Application Security Lead

Zantech · Camp Springs, MD, US · Remote

6 months ago

Application Security Lead | Offshore

Photon Group · India

7 months ago

Team Lead - Application Security

METRO/MAKRO · Maharashtra, PUNE, India

1+ year ago

Technical Lead - Application Security (UK Nationals Only)

CENSUS SA · GB · Remote

1+ year ago

Application Security Lead - Mobile

CENSUS SA · worldwide · Remote

1+ year ago