Application Security Engineer (AppSec) at Astra North Infoteck Inc. — NeverHard

Job Description: Role: Application Security Engineer Hybrid: 4 days a week in office Role Overview The team is seeking an experienced Application Security Engineer to strengthen application security capabilities and support AppSec tooling rollout. Key Responsibilities • Implement AppSec practices across SDLC • Perform threat modeling and secure design reviews • Conduct secure code reviews • Analyze vulnerabilities for exploitability and reachability • Support AppSec tool onboarding and rollout • Integrate AppSec into CI/CD pipelines • Enable developers with secure coding practices • Provide reporting and dashboards Required Skills & Experience • 8–12 years in application development and security • Experience in Java, .NET, Python, Node.js • Strong AppSec expertise • Experience with SAST, DAST, SCA tools • Knowledge of secure SDLC • Cloud experience (AWS/Azure) • Strong stakeholder management skills