Senior Application Security Engineer

About

Senior Application Security Engineer – Raleigh, NC (Hybrid)
Enact is a publicly traded U.S. private mortgage insurance provider focused on helping lenders put more people in homes and keep them there. The role contributes to advanced application, cloud, and AI security through threat modeling, secure design reviews, and AI security governance while acting as a technical peer to product teams to accelerate secure delivery and mitigate technical risk.

Responsibilities

• Provide advanced application, cloud, and AI security leadership by embedding security expertise directly into software architecture, design, and development workflows.
• Secure the organization’s use of AI and agentic AI by guiding safe design, privacy controls, model usage, and AI‑assisted development practices.
• Lead advanced application security activities, including threat modeling, secure design reviews, penetration testing, and remediation guidance for internally developed and customer‑facing systems.
• Function as an application security architecture peer to product team subject matter experts, enabling informed challenge and collaboration without slowing delivery.
• Elevate the effectiveness of the security team through technical mentorship, durable ownership of critical platforms, and reduction of key‑person and vendor dependency.

Success in Your First Year

• Reduced application and AI‑related risk at design time, demonstrated by fewer late‑stage security findings, faster resolution of architectural security decisions, and decreased production‑impacting issues.
• Faster, more predictable delivery of secure software, evidenced by earlier security engagement in development cycles, reduced rework, and improved collaboration with engineering and product teams.
• Increased organizational resilience and capability, including reduced reliance on third‑party security firms and improved security team effectiveness through mentorship.

Regular Collaborations

• Product and cloud engineering teams to embed security into architecture, design, and delivery of cloud‑native and AI‑enabled systems.
• Product and technology leaders to align security decisions with business priorities, delivery timelines, and customer impact.

Qualifications

• Bachelor’s degree in computer science, cybersecurity, information technology, or a related field.
• 7+ years of experience in application security, including securing custom‑built, cloud‑native, and distributed systems.
• Strong understanding of how to assess and secure web services, including application programming interfaces.
• Strong understanding of how to assess and secure artificial intelligence solutions.
• Demonstrated technical leadership and mentorship, with the ability to guide engineers and security practitioners through secure design and risk mitigation.
• Strong risk‑based and data‑informed approach to prioritizing security work based on impact, likelihood, and business context.
• Clear understanding of business objectives and delivery pressures, with the ability to align security architecture and recommendations to operational efficiency, customer trust, and regulatory expectations.
• Offensive Security Certified Expert (OSCE).

Preferred Qualifications

• AWS Certified Security – Specialty and/or CSA Trusted AI Safety Expert (TAISE).
• Experience securing serverless, function‑oriented, and event‑driven cloud workloads, CI/CD pipelines, and infrastructure‑as‑code (e.g., Terraform).
• Strong proficiency in Python for security automation, analysis, and tooling.

Benefits

• Hybrid work schedule (in‑office days Tues/Wed/Thurs)
• Generous time off
• 40 hours of volunteer time off
• Tuition reimbursement and student loan repayment
• Paid family leave and flexible spending accounts
• 401(k) with up to 5% employer match
• Fitness and emotional wellness reimbursements
• On‑site gym