Morgan Stanley

Application Security Engineer (Senior)

Rol remoto de Developer con fit claro de ubicación del candidato.

Publicado17 jun 2026

Países elegibles8 países aceptados

Señal de senioritySenior

Modelo de trabajoRemoto

Ubicaciones aceptadas para candidatos

BulgariaPoloniaPortugalRumaníaEslovaquiaEslovenia+2 más

Java Python

Puedo aplicar realmente?Revisa la lista de países

Las ubicaciones aceptadas para candidatos están listadas (8).

Actualidad de la fuente17 jun 2026

Fit de ubicación8 países aceptados

Match de stackJava, Python

Camino de aplicación0/3 listo

Resumen de fit de MiraPor qué vale revisar este rol

Fit de ubicación8 países aceptadosAgrega tu país

Match de stackAgrega skills al perfil para compararJava, Python

Señal de senioritySeniorDefine tu nivel para una revisión más precisa.

Preparación para aplicar0/3 listoCompleta la lista abajo para aplicar.

Aplicación

Aplicar a este rol

0/3 listo

Aplicando aApplication Security Engineer (Senior)Morgan Stanley

CuentaLogin obligatorio

Fit de paísAgrega tu país

Snapshot del CVSube un CV en PDF para que esta aplicación incluya un snapshot actual.

Cuenta necesaria

Inicia sesión para aplicar a Application Security Engineer (Senior)

Guardar rol

Resumen del rol

Application Security Engineer (Senior)

Requisitos y responsabilidades

Contenido del rol extraído en secciones para revisar más rápido.

About the role

We are looking for a Senior Application Security Engineer to architect and build automated security layers within the SDLC, engineering AI-enabled secure code scanning, hardened baseline automation, and CI/CD security tooling integration across a large-scale financial services program. You will work in Python and Java to deploy and tune SAST, DAST, and SCA tools, provide code-level remediation guidance to development teams, and operate with full autonomy building automated security runbooks. The role requires 6+ years of software engineering experience with a strong AppSec and DevSecOps focus.

What you will do

Engineer and deploy AI-enabled secure code scanning capabilities and Golden Images to drive secure-from-the-start adoption;
Automate the development of secure coding patterns and integrate them with traditional and Agentic SDLC workflows;
Architect the integration of continuous security scanning tools into enterprise CI/CD pipelines and tune them to eliminate noise;
Act as a senior technical SME by reading and reviewing complex application code and providing software engineers with code-level remediation guidance.

Must haves

6+ years of software engineering experience with a strong subsequent focus on Application Security and DevSecOps;
Strong coding and architectural proficiency in Python for security automation and scripting;
Strong coding and architectural proficiency in Java for reviewing and securing enterprise source code;
Deep, hands-on expertise deploying and tuning SAST, DAST, and SCA tools;
Experience integrating application security testing tools into complex CI/CD orchestration ecosystems;
Fully autonomous execution capability, requiring no daily supervision to map out and build automated security runbooks;
Upper-intermediate English level.

Nice to haves

Experience integrating LLMs, AI agents, or automated coding assistants to streamline vulnerability triaging or secure code generation;
Advanced application threat modeling experience.

Roles similares