Senior Application Security Engineer

<p>We’re seeking a Senior Application Security Engineer to help strengthen Zeta’s application and platform security posture. You’ll play a critical role in embedding security throughout the software development lifecycle, ensuring our systems, applications, and AI-driven platforms are built securely from the ground up.</p> <p>Zeta operates at massive scale, powering billions of consumer profiles and petabytes of data across real-time, AI-powered marketing platforms. In this role, you’ll collaborate with engineering and product teams to identify risks, implement secure design principles, and build automated controls that enable secure innovation.</p> <p>This position offers significant technical scope, cross-functional visibility, and opportunities to contribute directly to the company’s overall security maturity.</p> <p>&nbsp;</p> <p><strong>Key Responsibilities:</strong></p> <p><strong><em>Threat Modeling &amp; Security Validation</em></strong></p> <ul> <li>Conduct threat modeling and security reviews for distributed cloud-native systems.</li> <li>Perform security code reviews, static/dynamic analysis (SAST/DAST), and dependency scanning.</li> <li>Participate in incident response exercises and red/blue team simulations.</li> <li>Assess third-party libraries, APIs, and vendor integrations for security compliance.</li> </ul> <p><strong><em>Embedding Security into the SDLC</em></strong></p> <ul> <li>Partner with developers and QA engineers to embed security testing into CI/CD pipelines.</li> <li>Review architecture and design documents to identify and mitigate risks early.</li> <li>Contribute to security automation initiatives and tooling to improve developer velocity.</li> <li>Support security checkpoints in release and deployment processes.</li> </ul> <p><strong><em>Emerging Threat Monitoring &amp; Proactive Defense</em></strong></p> <ul> <li>Stay current on evolving security risks, frameworks, and attack vectors, including AI/ML-specific threats (e.g., prompt injection, model poisoning).</li> <li>Assist in designing and deploying proactive defense mechanisms across applications and data platforms.</li> <li>Support investigations and post-incident reviews to strengthen detection and prevention capabilities.</li> </ul> <p><strong><em>Security Awareness &amp; Policy Implementation</em></strong></p> <ul> <li>Advocate secure coding and best practices through code reviews, workshops, and documentation.</li> <li>Contribute to internal security standards and playbooks.</li> <li>Collaborate closely with Engineering, DevOps, and Product teams to foster a security-first culture.</li> </ul> <p><strong>&nbsp;</strong></p> <p><strong>What You Need to Succeed</strong></p> <ul> <li>Bachelor’s degree in computer science, Cybersecurity, or related field, or equivalent experience.</li> <li>2 - 4 years of experience in Application Security, DevSecOps, or Secure Software Development.</li> <li>Strong understanding of OWASP Top 10, SANS CWE Top 25, and general application threat modeling.</li> <li>Experience with frameworks and architectures such as React, Node.js, Django, or FastAPI.</li> <li>Knowledge of securing APIs, microservices, and authentication mechanisms (OAuth2, OIDC, JWT).</li> <li>Experience with cloud platforms (AWS, GCP, Azure) and containerization (Docker, Kubernetes).</li> <li>Working knowledge of security testing tools (e.g., Semgrep, SonarQube, Burp Suite, Zap, Trivy).</li> <li>Solid collaboration and communication skills with cross-functional teams.</li> </ul> <p><strong>Nice to Have</strong></p> <ul> <li>Familiarity with AI/ML security concepts such as data poisoning, adversarial testing, and model integrity.</li> <li>Experience with automation frameworks and scripting for security testing.</li> <li>Relevant certifications (e.g., OSCP, GWAPT, CSSLP, or ML/AI-specific security certifications)</li> </ul> <p>&nbsp;</p> <p><strong>WHO WE ARE </strong></p> <p>Zeta Global is a NYSE listed data-powered marketing technology company with a heritage of innovation and industry leadership. Founded in 2007 by entrepreneur David A. Steinberg and John Sculley, former CEO of Apple Inc and Pepsi-Cola, the Company combines the industry’s 3rd largest proprietary data set (2.4B+ identities) with Artificial Intelligence to unlock consumer intent, personalize experiences and help our clients drive business growth.</p> <p>Our technology runs on the Zeta Marketing Platform, which powers ‘end to end’ marketing programs for some of the world’s leading brands. With expertise encompassing all digital marketing channels – Email, Display, Social, Search and Mobile – Zeta orchestrates acquisition and engagement programs that deliver results that are scalable, repeatable and sustainable.</p> <p>Zeta Global is an&nbsp;<em>Equal Opportunity/Affirmative</em> Action employer and does not discriminate on the basis of race, gender, ancestry, color, religion, sex, age, marital status, sexual orientation, gender identity, national origin, medical condition, disability, veterans status, or any other basis protected by law.</p> <p>&nbsp;</p> <p><strong>ZETA IN THE NEWS!</strong></p> <p><a id="menur45ro" class="fui-Link ___1q1shib f2hkw1w f3rmtva f1ewtqcl fyind8e f1k6fduh f1w7gpdv fk6fouc fjoy568 figsok6 f1s184ao f1mk8lai fnbmjn9 f1o700av f13mvf36 f1cmlufx f9n3di6 f1ids18y f1tx3yz7 f1deo86v f1eh06m1 f1iescvh fhgqx19 f1olyrje f1p93eir f1nev41a f1h8hb77 f1lqvz6u f10aw75t fsle3fq f17ae5zn" href="https://zetaglobal.com/press/?cat=press-releases" target="_blank">https://zetaglobal.com/press/?cat=press-releases</a>&nbsp;</p>