Home › Companies › Careers Eastwestbank Icims Com › Senior Security Engineer AppSec
Senior Security Engineer AppSec
Careers Eastwestbank Icims Com · Dallas, TX, US; San Marino, CA, US · Active · $130,000–$220,000 / week · iCIMS
Job facts
| Field | Value |
|---|---|
| Company | Careers Eastwestbank Icims Com |
| Title | Senior Security Engineer AppSec |
| Normalized title | - |
| Department / team | Information Technology |
| Location | Dallas, TX, United States |
| Work model | - |
| Employment type | Full Time |
| Salary | $130,000–$220,000 / week |
| Status | active |
| ATS provider | iCIMS |
| Posted / first seen | 2024-06-22 / 2026-05-31 |
| Changed / last seen | 2026-06-22 / 2026-06-22 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Careers Eastwestbank Icims Com. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through iCIMS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Dallas. | Open |
| Department jobs | Active postings in Information Technology. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Careers Eastwestbank Icims Com |
| Source | d98a20a5-677f-4d13-8856-9124a022857e |
| ATS provider | iCIMS |
Description
Introduction
Since 1973, East West Bank has served as a pathway to success. With over 110 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement.
Headquartered in California, East West Bank (Nasdaq: EWBC) is a top-performing commercial bank with a strong foundation, an enterprising spirit and a commitment to absolute integrity. East West Bank gives people the confidence to reach further.
Overview
The Senior Cyber Security Engineer will lead and execute security initiatives across the application lifecycle, integrating security into DevOps pipelines, managing vulnerability assessments, and coordinating penetration testing efforts. This role ensures that applications are secure by design and resilient against evolving threats.
Responsibilities
Application Security & DevSecOps Integration
Embed security controls into CI/CD pipelines using GitHub workflows and automation tools.
Collaborate with development teams to implement secure coding practices and threat modeling during design and development phases.
Manage GitHub Advanced Security configurations, including secret scanning, push protection, and impact analysis.
Security Testing & Vulnerability Management
Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) using approved tools (e.g., CodeQL, Dependabot, OWASP ZAP).
Perform manual and automated code reviews to identify vulnerabilities and ensure remediation through code fixes or configuration changes.
Maintain accurate mapping of applications to GitHub repositories to support vulnerability tracking and reporting.
API & Web Application Security
Perform regular API security assessments and integrate monitoring tools like Data Theorem for endpoint protection
Implement and manage Web Application Firewall (WAF) policies and monitor logs for threat detection
Penetration Testing Coordination
Scope and schedule internal and third-party penetration tests for internet-facing and extranet applications
Validate findings, coordinate remediation with development teams, and track progress in ServiceNow and Jira
Metrics, Reporting & Compliance
Generate and present vulnerability metrics to senior leadership, highlighting risk posture and remediation progress
Ensure compliance with internal standards and regulatory requirements (e.g., GLBA, SOX, SOC2)
Training & Enablement
Deliver targeted training sessions based on impact analysis and vulnerability trends to improve developer awareness
Lead bi-weekly AppSec Management Update & Post-Finding Review Training meetings
May perform other duties as assigned
Qualifications
3+ years of experience in application security, DevSecOps, or related fields.
Proficiency in GitHub, SAST/DAST tools, WAF technologies, and API security frameworks.
Strong understanding of secure SDLC, threat modeling (e.g., STRIDE), and vulnerability management.
Experience coordinating penetration tests and managing third-party vendors.
Excellent communication and stakeholder engagement skills.
Applicants must have legal authorization to work in the United States. We do not offer visa sponsorship at this time.
Compensation The base pay range for this position is USD $130,000.00/Yr. - USD $220,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.
Full job record
| Job ID | b3a6349a7250882e5b9192e4eeac6fa25a08d3df |
| Org ID | 7b943527-a225-4db9-bb80-d9c80906171c |
| Source ID | d98a20a5-677f-4d13-8856-9124a022857e |
| Board ID | d98a20a5-677f-4d13-8856-9124a022857e |
| Provider | icims |
| Provider Job Key | 13005 |
| Title | Senior Security Engineer AppSec |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Dallas, TX, US; San Marino, CA, US |
| Department | Information Technology |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | United States |
| Region | TX |
| City | Dallas |
| Salary Raw | Introduction Since 1973, East West Bank has served as a pathway to success. With over 110 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement. Headquartered in California, East West Bank (Nasdaq: EWBC) is a top-performing commercial bank with a strong foundation, an enterprising spirit and a commitment to absolute integrity. East West Bank gives people the confidence to reach further. Overview The Senior Cyber Security Engineer will lead and execute security initiatives across the application lifecycle, integrating security into DevOps pipelines, managing vulnerability assessments, and coordinating penetration testing efforts. This role ensures that applications are secure by design and resilient against evolving threats. Responsibilities Application Security & DevSecOps Integration Embed security controls into CI/CD pipelines using GitHub workflows and automation tools. Collaborate with development teams to implement secure coding practices and threat modeling during design and development phases. Manage GitHub Advanced Security configurations, including secret scanning, push protection, and impact analysis. Security Testing & Vulnerability Management Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) using approved tools (e.g., CodeQL, Dependabot, OWASP ZAP). Perform manual and automated code reviews to identify vulnerabilities and ensure remediation through code fixes or configuration changes. Maintain accurate mapping of applications to GitHub repositories to support vulnerability tracking and reporting. API & Web Application Security Perform regular API security assessments and integrate monitoring tools like Data Theorem for endpoint protection Implement and manage Web Application Firewall (WAF) policies and monitor logs for threat detection Penetration Testing Coordination Scope and schedule internal and third-party penetration tests for internet-facing and extranet applications Validate findings, coordinate remediation with development teams, and track progress in ServiceNow and Jira Metrics, Reporting & Compliance Generate and present vulnerability metrics to senior leadership, highlighting risk posture and remediation progress Ensure compliance with internal standards and regulatory requirements (e.g., GLBA, SOX, SOC2) Training & Enablement Deliver targeted training sessions based on impact analysis and vulnerability trends to improve developer awareness Lead bi-weekly AppSec Management Update & Post-Finding Review Training meetings May perform other duties as assigned Qualifications 3+ years of experience in application security, DevSecOps, or related fields. Proficiency in GitHub, SAST/DAST tools, WAF technologies, and API security frameworks. Strong understanding of secure SDLC, threat modeling (e.g., STRIDE), and vulnerability management. Experience coordinating penetration tests and managing third-party vendors. Excellent communication and stakeholder engagement skills. Applicants must have legal authorization to work in the United States. We do not offer visa sponsorship at this time. Compensation The base pay range for this position is USD $130,000.00/Yr. - USD $220,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location. |
| Salary Min | 130,000 |
| Salary Max | 220,000 |
| Salary Currency | USD |
| Salary Period | week |
| Source URL | https://careers-eastwestbank.icims.com/jobs/13005/senior-security-engineer-appsec/job |
| Apply URL | https://careers-eastwestbank.icims.com/jobs/13005/senior-security-engineer-appsec/job |
| First Seen At | 2026-05-31 18:48:05Z |
| Last Seen At | 2026-06-22 08:46:25Z |
| Last Checked At | 2026-06-22 08:46:25Z |
| Last Changed At | 2026-06-22 08:46:25Z |
| Inactive At | — |
| Source Posted At | 2024-06-22 08:46:22Z |
| Source Updated At | 2026-06-05 22:52:06Z |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=icims/board=careers-eastwestbank.icims.com/date=2026-06-22/2026-06-22T08-46-17-471Z-9b0bf09ee44c7feae7db07eb9208743d76711e03102f846c27fa4ea8caf04553.json |
Event Fields
{
"content_hash": "99dbdac464d7b659ffecb06c55b9dd2f8bb50ae014d10f86c807b6aea15f58b2",
"source_hash": "9f082da187a4581a1b2a4c3e461fee19ed1e1c0f1a12319cfd352bee0400dd3d",
"last_changed_at": "2026-06-22T08:46:25.367Z",
"active_status": "active"
}Parsed Structured
{
"dedupe": null,
"language": "en",
"location": {
"raw": "Dallas, TX, US",
"city": "Dallas",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": 220000,
"salary_min": 130000,
"inferred_at": "2026-06-22T08:46:25.309Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Dallas, TX, US",
"city": "Dallas",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": "week",
"workplace_type": null,
"salary_currency": "USD"
}Extensions
{}Native Structured
{
"json_ld": {
"url": "https://careers-eastwestbank.icims.com/jobs/13005/senior-security-engineer-appsec/job",
"@type": "JobPosting",
"title": "Senior Security Engineer AppSec",
"@context": "http://schema.org",
"datePosted": "2024-06-22T08:46:22.490Z",
"description": "<h2>Introduction</h2>\n<p>Since 1973, East West Bank has served as a pathway to success. With over 110 locations across the U.S. and Asia, we are the premier financial bridge between the East and West. Our teams of experienced, multi-cultural professionals help guide businesses and community members on both sides of the Pacific looking to explore new markets and create new opportunities, and our sustained growth and expertise in industries like real estate, entertainment and media, private equity and venture capital, and high-tech help build sustainable businesses and expand our associates’ potential for career advancement. </p>\n<p> </p>\n<p>Headquartered in California, East West Bank (Nasdaq: EWBC) is a top-performing commercial bank with a strong foundation, an enterprising spirit and a commitment to absolute integrity. East West Bank gives people the confidence to reach further.</p>\n<h2>Overview</h2>\n<p>The Senior Cyber Security Engineer will lead and execute security initiatives across the application lifecycle, integrating security into DevOps pipelines, managing vulnerability assessments, and coordinating penetration testing efforts. This role ensures that applications are secure by design and resilient against evolving threats.</p>\n<h2>Responsibilities</h2>\n<p><strong>Application Security & DevSecOps Integration</strong></p>\n<ul>\n <li>Embed security controls into CI/CD pipelines using GitHub workflows and automation tools.</li>\n <li>Collaborate with development teams to implement secure coding practices and threat modeling during design and development phases.</li>\n <li>Manage GitHub Advanced Security configurations, including secret scanning, push protection, and impact analysis.</li>\n</ul>\n<h4><strong>Security Testing & Vulnerability Management</strong></h4>\n<ul>\n <li>Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) using approved tools (e.g., CodeQL, Dependabot, OWASP ZAP).</li>\n <li>Perform manual and automated code reviews to identify vulnerabilities and ensure remediation through code fixes or configuration changes.</li>\n <li>Maintain accurate mapping of applications to GitHub repositories to support vulnerability tracking and reporting.</li>\n</ul>\n<h4><strong>API & Web Application Security</strong></h4>\n<ul>\n <li>Perform regular API security assessments and integrate monitoring tools like Data Theorem for endpoint protection</li>\n <li>Implement and manage Web Application Firewall (WAF) policies and monitor logs for threat detection</li>\n</ul>\n<h4><strong>Penetration Testing Coordination</strong></h4>\n<ul>\n <li>Scope and schedule internal and third-party penetration tests for internet-facing and extranet applications</li>\n <li>Validate findings, coordinate remediation with development teams, and track progress in ServiceNow and Jira</li>\n</ul>\n<h4><strong>Metrics, Reporting & Compliance</strong></h4>\n<ul>\n <li>Generate and present vulnerability metrics to senior leadership, highlighting risk posture and remediation progress</li>\n <li>Ensure compliance with internal standards and regulatory requirements (e.g., GLBA, SOX, SOC2)</li>\n</ul>\n<h4><strong>Training & Enablement</strong></h4>\n<ul>\n <li>Deliver targeted training sessions based on impact analysis and vulnerability trends to improve developer awareness</li>\n <li>Lead bi-weekly AppSec Management Update & Post-Finding Review Training meetings</li>\n <li>May perform other duties as assigned</li>\n</ul>\n<h2>Qualifications</h2>\n<ul>\n <li>3+ years of experience in application security, DevSecOps, or related fields.</li>\n <li>Proficiency in GitHub, SAST/DAST tools, WAF technologies, and API security frameworks.</li>\n <li>Strong understanding of secure SDLC, threat modeling (e.g., STRIDE), and vulnerability management.</li>\n <li>Experience coordinating penetration tests and managing third-party vendors.</li>\n <li>Excellent communication and stakeholder engagement skills.</li>\n</ul>\n<p> </p>\n<p>Applicants must have legal authorization to work in the United States. We do not offer visa sponsorship at this time. </p>\n<h2>Compensation</h2>The base pay range for this position is USD $130,000.00/Yr. - USD $220,000.00/Yr. Exact offers will be determined based on job-related knowledge, skills, experience, and location.",
"directApply": true,
"jobLocation": [
{
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "75244",
"addressRegion": "TX",
"streetAddress": "5001 Spring Valley Rd.",
"addressCountry": "US",
"addressLocality": "Dallas",
"postOfficeBoxNumber": "UNAVAILABLE"
}
},
{
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "UNAVAILABLE",
"addressRegion": "CA",
"streetAddress": "UNAVAILABLE",
"addressCountry": "US",
"addressLocality": "San Marino",
"postOfficeBoxNumber": "UNAVAILABLE"
}
}
],
"validThrough": "2027-06-22T08:46:22.490Z",
"employmentType": "FULL_TIME",
"hiringOrganization": {
"name": "UNAVAILABLE",
"@type": "Organization",
"sameAs": "UNAVAILABLE"
},
"occupationalCategory": "Information Technology"
},
"detail_meta": {
"url": "https://careers-eastwestbank.icims.com/jobs/13005/senior-security-engineer-appsec/job?in_iframe=1",
"http_status": 200,
"content_type": "text/html;charset=UTF-8",
"response_bytes": 37676,
"compact_response_bytes": 5631,
"original_response_bytes": 37676
},
"sitemap_job": {
"id": "13005",
"url": "https://careers-eastwestbank.icims.com/jobs/13005/senior-security-engineer-appsec/job",
"slug": "senior-security-engineer-appsec",
"lastmod": "2026-06-05T18:52:06-04:00"
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/b3a6349a7250882e5b9192e4eeac6fa25a08d3df?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/7b943527-a225-4db9-bb80-d9c80906171cJSONGET https://api.bluedoor.sh/job-postings/v1/sources/d98a20a5-677f-4d13-8856-9124a022857eJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/b3a6349a7250882e5b9192e4eeac6fa25a08d3df/eventsJSON