Job Description

The Lead Application Security Engineer provides enterprise-level technical leadership and strategic direction for application security across the organization. This role is a senior individual contributor responsible for defining, governing, and evolving application security architecture, standards, tooling, and DevSecOps practices to ensure security is built into applications by design.

This role does not include direct people management but serves as a technical leader, mentor, and escalation point for complex application security initiatives.

Key Responsibilities:

• Define, own, and govern application security architecture standards, patterns, and requirements across development teams.
• Provide senior-level technical leadership, including review and approval of designs for complex, high-risk, or business-critical applications.
• Lead or co-own the design, implementation, and ongoing maturity of the enterprise DevSecOps program.
• Evaluate, select, and govern application security tooling, including defining usage standards, coverage expectations, and success metrics.
• Perform advanced threat modeling and security architecture reviews for externally exposed or high-impact applications.
• Act as the primary application security subject matter expert for development and platform teams.
• Define, track, and report application security metrics and KPIs to assess program effectiveness and inform leadership.
• Serve as a technical mentor and final escalation point for complex application security issues.
• Partner with Governance, Risk, and Compliance teams to support secure development training and awareness initiatives.

Required Knowledge, Skills and Abilities:

• Bachelor’s degree in computer science, Information Technology, Engineering, or a related technical field, or equivalent practical experience.
• Minimum of five (5) to seven (7) years of professional experience in information technology, with at least three (3) years focused on application security or closely related cybersecurity work.
• Experience applying application security principles, including secure coding, authentication, authorization, and data protection, in production software environments.
• Experience leading or significantly influencing application security architecture decisions.
• Experience integrating application security practices into modern software development methodologies, including Agile and CI/CD workflows.

Preferred Qualifications:

• Experience leading or governing enterprise application security or DevSecOps initiatives.
• Experience defining standards and operating models for application security tooling (e.g., SAST, DAST, IAST, SCA).
• Ability to influence cross-functional teams without direct authority.
• Security-related certifications (e.g., CISSP, GIAC, CSSLP, OSCP) are a plus.

Disclaimer:

The above is intended to describe the general content of and requirements for the performance of this job. It is not to be construed as an exhaustive statement of duties, responsibilities, or requirements.

All items listed above are illustrative and not comprehensive. They are not contractual in nature and are subject to change at the discretion of Little Caesars Enterprises Inc.

Little Caesar Enterprises, Inc. is an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regards to that individual’s race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender identity, age, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
The Company will strive to provide reasonable accommodations to permit qualified applicants who have a need for an accommodation to participate in the hiring process (e.g., accommodations for a job interview) if so requested.
This company participates in E-Verify. Click on any of the links below to view or print the full poster. E-Verify and Right to Work.

PRIVACY POLICY