Sr. Application Security Engineer

About this role

### Why TrueML?

TrueML is a mission-driven financial software company that aims to create better customer experiences for distressed borrowers. Consumers today want personal, digital-first experiences that align with their lifestyles, especially when it comes to managing finances. TrueML’s approach uses machine learning to engage each customer digitally and adjust strategies in real time in response to their interactions.

The TrueML team includes inspired data scientists, financial services industry experts and customer experience fanatics building technology to serve people in a way that recognizes their unique needs and preferences as human beings and endeavoring toward ensuring nobody gets locked out of the financial system.

### The Opportunity

We are seeking a talented and motivated Senior Application Security Engineer with a strong background in AWS and DevOps practices. In this role, you will be responsible for ensuringthe security of our applications throughout the development lifecycle. You will work closelywith engineering teams to identify and mitigate security vulnerabilities, implement securitybest practices, and contribute to the organization's overall security strategy. The ideal candidate will have excellent communication skills and the ability to collaborate effectively with cross-functional teams.

### What You'll Do:

• **Security Integration**: Work with development and DevOps teams to integrate security into the software development lifecycle (SDLC).
• **Vulnerability Management**: Identify, assess, and mitigate security vulnerabilities in applications, infrastructure, and cloud environments.
• **AWS Security**: Implement and maintain security controls in AWS, including IAM policies, security groups, VPC configurations, and monitoring.
• **DevOps Security**: Collaborate with DevOps teams to incorporate security best practices in CI/CD pipelines, including automated testing, secure code reviews, and infrastructure as code (IaC) sec...