Lead Application Security Engineer - 11006 jobs in United States
cer-icon
Apply on Employer Site
company-logo

Coupa · 1 month ago

Lead Application Security Engineer - 11006

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$142K/yr - $184K/yr
date2+ years exp

Coupa Software, Inc. is a leader in total spend management solutions powered by AI. They are seeking a Lead Application Security Engineer to enhance their application security landscape, drive security architecture, and ensure the security of their SaaS platform while working with cutting-edge technologies in AI and ML.

Cloud InfrastructureFinTechProcurementSoftware
check
H1B Sponsor Likelynote

Responsibilities

Expand the application security landscape at Coupa
Being a hands-on developer is a key responsibility in this role, with strong proficiency in secure coding practices
Strong software development skills in languages such as Java, .Net, and Python
Ability to perform code reviews and mentor junior team members
Passion for building security-focused features that perform at scale
Track vulnerability reports and contribute security fixes
Design and implement application changes to meet security compliance requirements
Lead and execute Security Architecture Reviews, Threat Modeling, and Design Reviews for new and existing platform components to proactively identify and mitigate security risks
Conduct Security Reviews for AI/ML models and systems, addressing unique risks associated with data integrity, model poisoning, privacy, and adversarial attacks
Evaluate new security technologies and make recommendations to strengthen our application
Be a champion of Coupa’s Secure Software Development Lifecycle (SSDLC) methodologies, integrating security earlier into the development pipeline
Work closely with the Operations Security team to review and define our best practices

Qualification

Application SecuritySecurity ArchitectureThreat ModelingSecure Coding PracticesJava.NETPythonOWASP Top 10Identity ManagementLeadershipCommunicationSelf-motivationContinuous Learning

Required

2+ years as a Lead Software Engineer or Lead AppSec Engineer; able to independently drive projects from design through delivery
Strong in Java, .NET, or Python; experienced building secure web applications/microservices and designing complex, distributed systems
Skilled in formal security architecture/design reviews and threat modeling methods (STRIDE, DREAD)
Deep knowledge of OWASP Top 10, SANS Top 25, identity and access management (SAML, OIDC, SSO), OAuth flows, and core cryptographic algorithms (DES, RSA, HMAC, SHA, etc.)
Familiar with design patterns, scalability, high availability, concurrency, and SQL/NoSQL databases; strong communication, self-motivation, and continuous learning mindset
Strong proficiency in secure coding practices
Ability to perform code reviews and mentor junior team members
Passion for building security-focused features that perform at scale
Track vulnerability reports and contribute security fixes
Design and implement application changes to meet security compliance requirements
Lead and execute Security Architecture Reviews, Threat Modeling, and Design Reviews for new and existing platform components to proactively identify and mitigate security risks
Conduct Security Reviews for AI/ML models and systems, addressing unique risks associated with data integrity, model poisoning, privacy, and adversarial attacks
Evaluate new security technologies and make recommendations to strengthen our application
Be a champion of Coupa's Secure Software Development Lifecycle (SSDLC) methodologies, integrating security earlier into the development pipeline
Work closely with the Operations Security team to review and define our best practices

Preferred

Background in AI/ML security (MLOps, adversarial robustness)
Compliance frameworks (HIPAA, PCI, SOX, FedRAMP)
Conference presentations or open-source contributions

Company

Coupa

twittertwittertwitter
Glassdoor3.8
company-logo
Coupa is a cloud platform for business spend that offers a fully unified suite of financial applications for business spend management.
dateFounded in 2006
location
Foster City, California, USA
people-size1001-5000 employees
web-link
https://www.coupa.com/

H1B Sponsorship

Coupa has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (41)
2024 (40)
2023 (43)
2022 (73)
2021 (62)
2020 (40)

Funding

Current Stage
Public Company
Total Funding
$219M
Key Investors
T. Rowe PriceMeritech Capital PartnersCrosslink Capital
2022-12-12Acquired
2021-06-03Post Ipo Equity· $50M
2016-10-06IPO

Leadership Team

leader-logo
Kevin Burns
Chief Financial Officer
linkedin
leader-logo
Nigel Pegg
Senior Vice President, Platform
linkedin

Recent News

PR Newswire
Coupa's AI-Driven Procurement Saves Customers Almost $15B in Q3 FY26
2025-12-15
PYMNTS.com
CFOs and AI Help Emerging Enterprises Accelerate Time to Cash™
2025-12-10
Best ERP Software, Vendors, News and Reviews
Top Worktech News From the Week of November 21st: Updates from ECI Software Solutions, Parasoft, HighByte, and More
2025-11-23
Company data provided by crunchbase