CrawlJobs Logo
Wells Fargo Logo Wells Fargo · IT - Software Development

Principal Engineer - Application Security: Secure Development

United States, Charlotte · Job Posted May 29, 2026

Job offer has expired

Job Link Share

Job Description

Application Security enhances the ability of the development organization to consistently deliver highly functional applications that are secure and resilient against attack. We develop policies, processes, controls and tools to proactively embed security into Wells Fargo-developed applications. Wells Fargo is seeking a Principal Engineer who will lead a team of Application Security Champions (ASCs) that support Wells Fargo's Technology development teams, which deliver centralized shared services to our lines of business. ASCs promote and enable the security awareness to protect the Bank's applications by conducting vulnerability and fix reviews and training developers in secure coding best practices.

Job Responsibility

  • Act as an advisor to leadership to develop or influence applications, network, information security, database, operating systems, or web technologies for highly complex business and technical needs across multiple groups
  • Lead the strategy and resolution of highly complex and unique challenges requiring in-depth evaluation across multiple areas or the enterprise, delivering solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical and inductive thinking
  • Translate advanced technology experience, an in-depth knowledge of the organizations tactical and strategic business objectives, the enterprise technological environment, the organization structure, and strategic technological opportunities and requirements into technical engineering solutions
  • Provide vision, direction and expertise to leadership on implementing innovative and significant business solutions
  • Maintain knowledge of industry best practices and new technologies and recommends innovations that enhance operations or provide a competitive advantage to the organization
  • Strategically engage with all levels of professionals and managers across the enterprise and serve as an expert advisor to leadership
  • Lead and mentor a federated network of Application Security Champions (ASCs), establishing standards, playbooks, and metrics to scale secure development practices consistently across non CIO engineering teams
  • Drive integration of application security controls into CI/CD pipelines and developer tooling, enabling automated detection and remediation of vulnerabilities across the software development lifecycle
  • Oversee threat modeling, vulnerability assessments, and secure design reviews for complex, high risk applications and shared services, ensuring alignment with enterprise security policies and standards
  • Champion secure adoption of emerging technologies, including AI/LLM-enabled applications, by defining guardrails, patterns, and risk mitigation strategies for safe enterprise use

Requirements

  • 7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 7+ years Application Security Engineering
  • Experience building AI/LLM Application Security scalable solutions for enterprise production environments

Nice to have

  • Secure application architecture and design
  • Secure coding practices and code-level vulnerability analysis
  • Threat modeling and abuse case analysis
  • Authentication, authorization, session management, API security, and secrets management
  • Common application vulnerabilities and exploit patterns (e.g., OWASP Top 10, deserialization, injection, SSRF, access control issues, insecure design, dependency risk)
  • Strong hands-on experience securing applications built in one or more modern technology stacks such as Java, .NET, Python, JavaScript/TypeScript, Node.js, Go, or similar
  • Experience integrating security into CI/CD pipelines, developer workflows, and engineering platforms
  • Experience with one or more of the following: SAST, SCA, DAST, IaC scanning, container security, API security testing, code review, threat modeling, runtime protection, or software supply chain security controls
  • Hands-on experience with AI security, including securing AI-enabled applications or advising engineering teams on the secure use of AI/LLM-based capabilities
  • Ability to independently investigate complex technical problems, identify root causes, and drive practical remediation
  • Strong written and verbal communication skills with the ability to influence both engineers and senior stakeholders
  • Proven ability to operate both strategically and tactically—moving from enterprise patterns to code-level detail as needed
  • Prior experience serving as an Application Security Champion, Security Champion, embedded security lead, or senior engineer responsible for driving security within product/application teams
  • Experience designing security controls for cloud-native and distributed systems running in Azure, AWS, or GCP
  • Experience with software supply chain security, including dependency risk management, build pipeline hardening, SBOM, artifact integrity, provenance, and package governance
  • Experience with runtime application protection, threat detection, or exploit prevention technologies
  • Familiarity with Zero Trust, secure platform engineering, and policy-as-code approaches
  • Experience defining standards, playbooks, or secure reference architectures that can be adopted broadly by engineering organizations
  • Background in software engineering or architecture prior to moving into security
  • Certifications: CSSLP, GIAC GWEB, CISSP, GIAC GWAPT, CCSP, CCSP
Wells Fargo - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Principal Engineer - Application Security: Secure Development

8 matching positions

Principal Security Engineer

We’re seeking a Principal Security Engineer with deep expertise in cloud securit...
Location
Location
United States , San Francisco
Salary
Salary:
136000.00 - 241000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in security engineering or architecture roles
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field from a reputable institution
  • Deep expertise in cloud platforms (particularly AWS), including infrastructure-as-code (e.g., Terraform, CloudFormation)
  • Strong experience in secure software development and application security (e.g., OWASP Top 10, SAST, DAST, threat modeling)
  • Experience designing and implementing zero-trust architectures, secure API gateways, and identity/access controls
  • Proficient in scripting or development languages (e.g., Python, Go, JavaScript) and secure coding practices
  • Demonstrated leadership in cross-functional security initiatives and technical mentorship
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Design and implement secure architectures for applications, APIs, microservices, and containerized workloads
  • Develop and enforce application security best practices across SDLC
  • partner with DevOps and engineering teams to integrate security into CI/CD pipelines
  • Conduct threat modeling, security design reviews, and risk assessments for new and existing systems
  • Evaluate and implement cloud security tools, controls, and frameworks (e.g., CSPM, CWPP, IAM, KMS, logging, and monitoring)
  • Provide technical leadership and mentorship to security engineers, software developers, and DevOps personnel
  • Lead response to complex security incidents or architectural flaws
  • conduct root cause analysis and recommend strategic remediations
  • Contribute to and influence security policies, standards, and governance
  • Stay current with emerging threats, vulnerabilities, and security technologies, advising stakeholders on evolving risks and mitigations
  • Fulltime
Read More
Arrow Right

Principal Security Engineer

We’re building a world-class global Security team as part of our Trust Program. ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
highspot.com Logo
Highspot
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of robust, progressive experience in security engineering, application security, DevSecOps, incident detection and response, or closely related fields
  • Advanced proficiency in at least one programming language (Python, Ruby, Go, Rust, JavaScript), with deep experience conducting detailed code reviews and security assessments across multiple languages
  • Hands-on experience with deploying, operating, and interpreting results from security tools such as static analyzers, web vulnerability scanners, supply chain analysis scanners, and host-based intrusion detection systems
  • Demonstrated experience mentoring, coaching and guiding junior and mid-level security engineers, contributing to a strong team culture, and supporting peer development as a senior individual contributor
  • Demonstrated proactive approach, strong continuous learning orientation, and curiosity about emerging threats, security trends, and innovative technologies
  • Extensive expertise securing cloud-native environments (AWS, Azure, GCP, containers, microservices), with in-depth knowledge of modern cloud security risks and defenses
  • Demonstrated ability to embrace being wrong, practice humility, continuously learn from experiences, and actively seek insights through thoughtful questioning and collaboration
Job Responsibility
Job Responsibility
  • Lead comprehensive application security assessments, advanced threat modeling sessions, and secure code reviews across critical product features, internal tooling, endpoints, and third-party integrations
  • Collaborate strategically with product engineering to establish and enhance secure-by-default and privacy-by-design practices within the software development lifecycle (SDLC)
  • Lead and otherwise participate in incident detection, investigation, triage, containment, and root cause analysis for high impact security incidents, providing mentorship and guidance to junior engineers as required
  • Drive the development and continuous improvement of sophisticated detection rules, response automation, and optimized alert management across cloud environments, corporate infrastructure, and SaaS platforms
  • Lead and participate in complex vulnerability remediation processes, and effectively respond to security issues discovered by both internal teams and external sources
  • Document technical findings and strategic decisions in a clear and accessible manner, and procedural enhancements
  • significantly contribute to comprehensive security playbooks and knowledge repositories
  • Manage and oversee asksecurity@ request handling, and actively participate in sprint-based security activities, balancing strategic and tactical execution
  • Actively participate in the security on-call rotation, or provide senior-level guidance as required during an event and aid in rapid response capabilities to protect our 24x7 platform and global workforce
  • Fulltime
Read More
Arrow Right

Principal Security Architect

As a Security Architect, your role involves designing, reviewing, and enhancing ...
Location
Location
United States , San Francisco
Salary
Salary:
164000.00 - 290000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Information Security with at least 2 years as a Security Architect
  • Bachelor’s Degree in Computer Science or related field, or an additional 3 years of pertinent work involvement preferred
  • Strong knowledge of prevalent security architectures, frameworks, standards and emerging threats along with strategies and technologies for defense
  • Deep understanding of network protocols, operating systems, databases, applied cryptography, least privilege, zero trust principles, identity & access management, and other core information security concepts
  • Expertise in cloud computing and its associated best security practices encompassing applications, infrastructure, storage, platforms, and data security
  • Ability to conduct threat modeling and risk assessments
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Conduct Threat Modeling & Architectural Assessments to cover all Information Security domains to ensure Security by Design
  • Assess technologies and solutions to develop and enrich security capabilities
  • Identify security gaps and communicate associated business risks to relevant stakeholders
  • Craft solutions that harmonize business needs with security and compliance requirements
  • Verify the effectiveness of security controls in mitigating identified risks
  • Assist engineering projects across the Software Development Life Cycle (SDLC) and collaborate to prioritize product security elements effectively
  • Apply expertise in information security and application development to instigate organizational shifts aimed at managing and resolving security weaknesses and vulnerabilities
  • Contribute to the creation of security policies, standards, and guidelines
  • Devise and implement frameworks for data classification, retention, and disposal to ensure alignment with data privacy regulations
  • Spearhead initiatives for data security awareness and training
  • Fulltime
Read More
Arrow Right

Security Engineer II

PagerDuty is seeking an Enterprise Security Engineer to join its global IT Opera...
Location
Location
Canada , Toronto
Salary
Salary:
122000.00 - 185000.00 CAD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in the information security industry, with 2+ years in network security or zero-trust, and 2+ years in security architecture or solution experience
  • Knowledge of Information Security concepts, especially in the areas of security threats, analyzing security logs and driving Incident response
  • Knowledge and practical experience in network security and zero-trust
  • Understanding of the IAM cybersecurity landscape, including identity stores, authentication/authorization, strong authentication, and privileged access management capabilities and methodologies
  • Understanding of security technologies and concepts, including SIEM, MDR/XDR, EDR and vulnerability management
  • Understanding of security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework)
  • Knowledge of incident response processes
Job Responsibility
Job Responsibility
  • Partner closely with CISO organization to design and implement enterprise IT security architectures and solutions
  • Tracking the evolution of cutting-edge security technologies, and keeping up to date of the latest security threats and trends
  • Focus on enterprise security and zero-trust technology, serving as the principal technical expert in this area within the Enterprise Security department
  • Monitors security alerts and leads the team in identifying and responding to security threats
  • Monitors systems for vulnerabilities, provides prioritization, and drives remediation efforts
  • Working cross-functionally to triage suspicious activity and drive remediation (performing L2-L3 duties as needed)
  • Analyzing threat intelligence feeds to develop metrics, alerts, and techniques to protect against new and emerging attack vectors
  • Develop metrics, thresholds, alerts, dashboards, and incident response playbooks
  • Drive the design and development of automated security response and maintenance solutions
  • Oversee our workstation vulnerability management & endpoint compliance program
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

Senior Principal Software Engineer

Atlassian’s Global Experiences organization is dedicated to creating unified, se...
Location
Location
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of experience in software engineering, with deep expertise in platform and product engineering at scale
  • Exceptional communication and collaboration skills
  • able to influence and partner across teams
  • Deep product engineering background, ideally with experience in platform environments at scale
  • Full stack experience preferred, or strong back-end skills with front-end capability
  • Proven ability to architect, build, and operate large-scale, distributed systems and user-facing applications
  • Strong product mindset and UX sensibility
  • Experience leading multi-year, cross-org technical initiatives that drive business outcomes
  • Passion for innovation, continuous improvement, and fostering an inclusive, high-performing engineering environment
Job Responsibility
Job Responsibility
  • Leading technical strategy and architecture for Platform Apps, ensuring solutions are robust, secure, and consistent
  • Driving innovation in user and admin experiences, including integrating AI-powered insights and advancing Atlassian’s System of Work
  • Collaborating with product, UX, and engineering leaders to define and deliver a roadmap of high-impact, standalone apps
  • Managing negotiations and dependencies across multiple teams and departments, balancing deep project involvement with platform-wide strategic thinking
  • Standardising and mechanising app development processes , transitioning from ad hoc to scalable, repeatable approaches
  • Mentoring engineers and championing engineering excellence, continuous improvement, and an inclusive culture
What we offer
What we offer
  • Flexibility: Work from anywhere Atlassian has a legal entity, with support for remote, hybrid, or in-office work
  • Health and wellbeing resources
  • Paid volunteer days
Read More
Arrow Right

Senior Principal Machine Learning Engineer

You’ll form a new team of passionate engineers dedicated to building and scaling...
Location
Location
United States
Salary
Salary:
222300.00 - 348975.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s, Master’s, or PhD in Computer Science, Statistics, Mathematics, or a related field, or equivalent practical experience
  • 12+ years of industry experience in machine learning, data science, or AI, with a proven track record of delivering production-grade ML systems
  • Deep expertise in Python, Go, or Java, with the ability to write performant, production-quality code
  • familiarity with SQL, Spark, and cloud data environments (e.g., AWS, GCP, Databricks)
  • Experience building and scaling ML models for business-critical applications, ideally in security, privacy, anti-abuse, or compliance domains
  • Strong communication skills, able to explain complex ML concepts to diverse audiences and influence stakeholders
  • Demonstrated ability to solve ambiguous, complex problems and drive projects from ideation to production
  • Agile development mindset, with a focus on iterative improvement and business impact
Job Responsibility
Job Responsibility
  • Lead AI/ML Strategy for Trust: Drive the development and implementation of advanced machine learning algorithms and AI systems for Trust, Security, Product Abuse, and Compliance use cases (e.g., threat detection, vulnerability management, privacy automation, AI safety)
  • Architect and Scale ML Platforms: Design and build scalable, secure, and reliable ML infrastructure and pipelines, ensuring compliance with privacy and regulatory requirements
  • AI Safety and Responsible AI: Develop and champion AI safety practices, including output moderation, explainability, and alignment with evolving regulatory frameworks
  • Cross-Functional Collaboration: Partner with product, engineering, security, privacy, and analytics teams to deliver transformative AI/ML solutions that enhance Atlassian’s trust posture
  • Mentorship and Leadership: Mentor and guide ML engineers and data scientists, fostering a culture of technical excellence, innovation, and continuous improvement
  • Innovation and Research: Stay at the forefront of AI/ML research, evaluating and applying the latest techniques (e.g., LLMs, anomaly detection, privacy-preserving ML) to real-world Trust challenges
  • Platform Enablement: Build reusable ML services and APIs that empower other teams to integrate AI/ML into their products and workflows
  • Operational Excellence: Ensure high availability, reliability, and security of all ML-powered Trust platforms and services
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • benefits, bonuses, commissions, and equity
  • Fulltime
Read More
Arrow Right

Software Engineer, Principal - Mobile App

As a principal mobile app engineer, you will be involved in all phases of the de...
Location
Location
Salary
Salary:
Not provided
blackbaud.com Logo
Blackbaud
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years as a Software Engineer
  • 5+ years of React Native mobile app experience with extensive knowledge of the mobile app development lifecycle, from setting up local environments to publishing
  • Proficiency in working with RESTful services and APIs
  • Proficiency in architectural patterns in React Native mobile apps
  • Proficiency in designing effective state management strategies in React Native mobile apps
  • Proficiency testing React Native mobile apps using various methodologies
  • Experience setting up CICD pipelines for a mobile app
  • Proficiency in debugging a published mobile app
  • Good communication skills working with internal and external stakeholders, including presentation to the internal team and wider audiences
  • Mentoring and developing junior team members, representing the team and collaboration with members of other teams
Job Responsibility
Job Responsibility
  • Contribute to the design and develop software applications, project prototypes, proof of concepts & client demos
  • Evaluate performance of critical application components and optimize them to assure maximum performance and scalability
  • Assist in driving the development effort for End-to-End on-time delivery of high-quality solutions that conform to feature requirements
  • Work closely with architecture in the gathering of requirements and the dissemination of information to the team
  • Perform, design and code reviews for all key application functional components
  • Provide critical thinking, technical innovation and attention to detail when serving as a trusted advisor on your team
  • Keep up to date on the latest technical developments in your area
  • Ensure compliance with security, web standards and accessibility requirements
  • Ensure robust high quality code standards are maintained in the development process
What we offer
What we offer
  • Flexible remote or hybrid work culture
  • Investment in your well-being
  • Time off to volunteer
  • Benefits that support each stage of your life journey
  • Inclusive work environment
Read More
Arrow Right

Principal Engineer-Nuclear

As a Principal Engineer - Nuclear you will be taking on a new challenge in guidi...
Location
Location
United States , Lewis Center
Salary
Salary:
Not provided
atsautomation.com Logo
ATS Automation Tooling Systems Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Engineering Physics, Engineering Science, Electrical, Mechanical or Mechatronics Engineering or equivalent
  • A professional engineering license
  • 10+ years of experience in nuclear automated tooling design, development and qualifications of automated systems custom machinery or industrial equipment
  • Thorough understanding of nuclear tooling engineering and field issues, precision engineering principles and ASME codes is necessary
  • In-depth knowledge of and use of nuclear equipment quality standards (NQA-1, ASME BPV Section III)
  • Thorough understanding of machine design and build, machine controls, structured problem solving, statistical analysis, and precision engineering principles
  • Good written and oral communication skills and ability to lead or work as part of a multi-disciplinary project team
  • Will be required to travel to licensed Nuclear Facilities and be registered as a Radiation Worker (US) and/or a Nuclear Energy Worker (Canada)
  • Must be capable of obtaining Security Clearance at nuclear sites globally
  • Work in conformance with divisional health, safety and environmental procedures and compliance to legislative requirements
Job Responsibility
Job Responsibility
  • Technical Leadership and Subject Matter Expertise: Provides Subject Matter Expert oversight and opinion to support ATS’s business in key focus areas for nuclear (e.g., SMRs, PWRs, Fuel Fabrication)
  • Use technical knowledge of company's and/or industry technologies to lead the development of successful approaches to critical problems and broad design issues
  • Participate and, where needed, lead the development of innovative programs to meet nuclear industry demand
  • Engineering Direction and Support: Provide technical direction, advice, and guidance to the engineering/design departments
  • Provide engineering support to solve problems and advance innovation including providing conceptual and detail designs, performing calculations and analysis, providing evaluation, and defining and participating in testing
  • Provides, and coordinates other disciplines as needed, to solve equipment problems
  • Project and Proposal Development: Support nuclear projects by participating in design reviews and providing solutions to complex problems
  • Support Applications Engineering to prepare concepts for new proposals
  • Prepares concept designs and assembles preliminary pricing for critical proposals
  • Working with project managers, assists driving successful completion of the work to meet design requirements and maintain cost and schedule
What we offer
What we offer
  • Flexible work schedules
  • Employee events
  • Free coffee beverages
  • Employee referral program
  • Safety shoe programs
  • Competitive starting salaries
  • Overtime pay eligibility
  • Paid vacation
  • Company paid short- and long-term disability and life insurance
  • Comprehensive health benefits
Read More
Arrow Right