Application Security Engineer - Philippines - Aprimo

Paglalarawan

Position Title: Application Security Engineer

Location: Manila Philippines

Employment Type: Full Time

Onsite, Remote/Flexible, or Hybrid: Remote

Department: Security & Compliance

Hiring Manager: Chief Information Security Officer

Travel: Minimal (Up to 5%)

COMPANY SUMMARY:

Here at Aprimo, our mission is to empower the marketing organizations of today to build the brands of tomorrow. Aprimo is a pioneer of the marketing resource and digital asset management space, and we deliver an innovative, industry-leading SaaS solution that changes the way companies like AT&T, National Park Foundation, Laborie, and Bank of America work, create, collaborate, and learn in order to deliver exceptional brand experiences at scale.

Aprimo helps enterprises unleash the power of their content by providing a marketing automation software and digital asset management software that manages the behind-the-scenes activities involved in marketing. Our product allows companies to manage content planning, creation and distribution all in one place, store content and media in a shared repository, and receive in-depth insights into how content performs.

Founded in 1998, Aprimo has five offices internationally, including Chicago headquarters, and offers a flexible work-from-home/remote-work policy.

Named a Leader in Digital Asset Management (DAM) and Marketing Resource Management by Forrester and winner of the 2021 Tech Cares Award for our work with Aprimo HELPS, we build on the power of our people to make an impact both in our industry and in our communities.

POSITION SUMMARY:

As an Application Security Engineer at Aprimo, you will partner with software and systems engineers to ensure the security, integrity, and resilience of our cloud based SaaS application. You will analyze and manage security findings from customer reports, internal / 3rd party testing, and automated SAST/DAST/SCA vulnerability scans for our Azure-based application. This includes full lifecycle ownership of security tickets—triage, communication, and remediation.

You will monitor security alerts, lead investigations, and guide engineering teams on improvements. You will also own and enhance our SAST, DAST, SCA, and vulnerability scanning tools and workflows as related to Aprimo's defense-in-depth strategy. Working across a diverse tech stack (.NET, React, Angular, PowerShell, Elasticsearch, Redis, and more), you will deliver practical mitigation strategies that strengthen security while supporting frequent customer value delivery.

This co-located security engineering role is part of a global organization reporting to the CISO. We operate in an agile, collaborative environment that values innovation, continuous improvement, defense in depth and strong employee experience.

WHAT YOU WILL BE RESPONSIBLE FOR:

• Partner with Software Engineers, Product Owners, and Software Architects to assess code, prioritize, and remediate security findings while managing security-related tickets and communicating remediation paths.
• Apply secure coding best practices and industry standards, including OWASP Top 10 and SANS CWE Top 25.
• Analyze and triage inbound security findings from customers including PenTest findings, pre-production tests, and security tooling, while owning and maintaining internal SAST, DAST, SCA, dependency scanning and analysis, along with infrastructure scanning tools.
• Prioritize security findings based on risk and drive timely remediation.
• Coach software engineering teams on secure design principles and effective remediation strategies.
• Maintain security standards, minimize technical debt, and support production security operations.
• Monitor security alerts, investigate incidents, and recommend rapid response actions.
• Apply expertise across operating systems, databases, security protocols, and application stacks including .NET, React, Angular, PowerShell, Elasticsearch, Redis, and related technologies to analyze and mitigate vulnerabilities.
• Additional responsibilities and duties as required

CANDIDATE QUALIFICATIONS & WHY YOU'RE A GREAT FIT FOR THE ROLE:

• Bachelor's or software engineering-related discipline or equivalent years' experience
• 4+ years of experience in application security, cloud security, or software engineering with security responsibilities.
• Hands-on experience with SAST, DAST, SCA and vulnerability scanning tools (e.g., Veracode, Checkmarx, Burp Suite, Snyk, or similar).
• Strong understanding of secure coding principles and common vulnerability classes (OWASP Top 10, SANS CWE Top 25).
• 4+ years with SQL Server or other RDBMS, ASP.NET/Web API, and cybersecurity experience.
• Experience in Azure.
• Experience with threat modeling and secure design review processes.
• Knowledge of CI/CD automation and integrating security tooling into build pipelines.
• Familiarity with SIEM solutions, cloud-native monitoring tools, or security orchestration workflows.
• Azure Defender for Cloud experience
• Fluency in English (writing and conversation) required.

APRIMO CULTURE & WHY YOU'LL LOVE WORKING HERE:

• Aprimo offers a forward-thinking, progressive and employee-first culture that is based in both collaboration and flexibility with team members who are friendly, intelligent and enthusiastic people that are committed to the product and mission here at Aprimo.
• With 5 offices worldwide and teams spread throughout the US, EMEA and Philippines, our multicultural teams work cross-departmentally and across continents and cultures towards a shared goal.
• We offer a diverse environment that promotes DEI efforts, values multiple perspectives and fresh thinking and which includes Aprimo HELPS, an employee resource group (ERG) that is dedicated to giving back to our local communities
• Through its relaxed environment, Aprimo embodies a more casual "Silicon Valley" atmosphere.
• We have a casual dress code that allows employees to express themselves as individuals and which fosters a creative and free-thinking approach to problem solving and business solutions. And it also allows us to wear hoodies and shorts during internal meetings.
• Flexible work schedules and all positions allowing for either entirely remote or hybrid working arrangements create a deeply rewarding work-life balance.
• With flexible work schedules, employees can attend to personal matters, such as stepping away to pick up their children from school or to get a much-needed haircut.
• In a recent internal survey, 89% of staff cited work-life balance as being one of the most rewarding aspects of working at Aprimo
• Part of the key to our success is that team members are not only successful at collaboration and open communication, but that they are also given a great deal of autonomy and freedom in their own individual roles.
• Our culture is not a micro-managing environment – rather, employees are encouraged to be self-starters, to voice new ideas, and to exercise ownership in their individual roles.
• As such, individual team members can leave a lasting impact and footprint within the organization – in fact, our average employee tenure is 7.7 years.
• Aprimo employs a "choose your own adventure" approach to career advancement.
• Staff members are not siloed into roles and for many of our teams there is no set ladder that one needs to climb to achieve growth and promotion.
• Rather, we emphasize an organic approach to career development in which employees can and do frequently transition into newly created roles within their own teams or transition into other departments based on their interests in exploring new skills and responsibilities.
• For additional learning and development, we recently rolled out Udemy, which is an online learning platform that employees have access to and which features over 200,000 courses on a wide variety of business topics.
• Ranked #1 in AI Metadata & Search by Forrester, Aprimo sits on the cutting-edge of technology and is paving new paths forward by incorporating AI (artificial intelligence) into our product offerings.
• We offer generative AI in a secure environment built for brand safety and governance. Our AI-powered content operations platform, with industry leading digital asset management (DAM) software at its core, helps to optimize the creative process and improve the user experience with better search, recommendations, categorization and summarization.
• Our AI empowers marketing teams to automate tasks, analyze data, and personalize content, ensuring scalability without sacrificing productivity.
• AI automatically identifies asset characteristics and transforms them into words a human would search for. Translation, image alterations, personalization, and more are all streamlined by AI.
• With our platform, marketers can efficiently produce a larger volume of content, engage customers on a personalized level, curate relevant materials, and make data-driven decisions to drive their content strategies forward.
• Our AI offers up to 72% increase in discoverability and productivity, up to 61% reduction in production time, and up to 66% faster time to market.

APRIMO BENEFITS WE OFFER:

• Target Compensation: Monthly base salary target of 167,307 PHP to 188,461 PHP depending on job related knowledge, skills, and level of experience. This is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills and abilities, as well as internal equity, alignment with market data, or other law.
• Competitive benefits coverage that begins on the first day of employment, and includes:
• Generous Leave options: Annual, Sick, & Special Leaves such as Marriage, Paternity, Maternity, and Bereavement
• Medical and Dental Insurance; Eye Refraction; Outpatient medicine coverage
• Employee Assistance Program
• Rice Allowance
• Life and Accident Insurance