Application Guide

How to Apply for Lead Application Security Engineer

at Apollo

๐Ÿข About Apollo

Apollo is a leader in alternative investment management, known for its innovative capital solutions and commitment to sustainable and impactful investing. With a focus on driving growth through strategic partnerships and a strong emphasis on ESG principles, Apollo offers a unique opportunity to work at the intersection of finance and technology while making a positive impact.

About This Role

As the Lead Application Security Engineer, you will be responsible for embedding security into every phase of software development, from threat modeling to production monitoring. This role is critical for protecting Apollo's applications and data, ensuring compliance with financial regulations, and enabling secure innovation across the company's technology stack.

๐Ÿ’ก A Day in the Life

A typical day might start with a stand-up with the security team to review ongoing assessments, followed by a threat modeling session for a new trading application. You might then collaborate with developers to tune SAST rules, and later present a security risk report to the CISO and engineering leadership. The role balances deep technical work with strategic planning and cross-functional communication.

๐Ÿš€ Application Tools

Generate Cover Letter

AI-powered, tailored for Apollo

Interview Prep

Practice questions for this role

๐ŸŽฏ Who Apollo Is Looking For

  • Has 10+ years of hands-on application security experience with a strong software development background, ideally in financial services or a similarly regulated industry.
  • Deep expertise in integrating SAST, SCA, and secret scanning tools into CI/CD pipelines, with experience at scale (e.g., managing tools for hundreds of developers).
  • Proven ability to lead threat modeling sessions and communicate technical risks to both engineering teams and executive stakeholders.
  • Holds a Bachelor's degree in CS, IT, Information Security, or related field, and possesses certifications like CISSP, CSSLP, or GWEB.

๐Ÿ“ Tips for Applying to Apollo

1

Highlight specific examples of leading threat modeling for complex applications, especially in cloud environments (AWS, GCP, or Azure).

2

Quantify your impact: mention how your secure SDLC initiatives reduced vulnerabilities or improved compliance scores.

3

Show familiarity with Apollo's investment focusโ€”mention sustainable investing or ESG in your cover letter to demonstrate alignment.

4

If you have experience with financial regulations (e.g., PCI-DSS, SOX, SOC2), emphasize it clearly.

5

Tailor your resume to include keywords from the job description: threat modeling, SAST, SCA, secret scanning, CI/CD, and governance frameworks.

โœ‰๏ธ What to Emphasize in Your Cover Letter

['Your experience leading application security programs and integrating security tools into CI/CD pipelines.', 'Your ability to balance security with developer velocityโ€”emphasize collaboration and automation.', 'Specific examples of threat modeling for financial or regulated applications.', "Your understanding of Apollo's mission in sustainable investing and how security supports that mission."]

Generate Cover Letter โ†’

๐Ÿ” Research Before Applying

To stand out, make sure you've researched:

  • โ†’ Explore Apollo's recent investments and focus on sustainable finance to understand their business context.
  • โ†’ Read about their technology stack (likely AWS, microservices, and modern CI/CD) from engineering blogs or public talks.
  • โ†’ Review their security policies or any public disclosures (e.g., bug bounty programs) to understand their security maturity.
  • โ†’ Look into their corporate structure and how the security team interacts with business units.

๐Ÿ’ฌ Prepare for These Interview Topics

Based on this role, you may be asked about:

1 Describe your approach to threat modeling a new financial application in a cloud environment.
2 How would you convince developers to adopt security tools without slowing down releases?
3 Walk us through a time you identified a critical vulnerability and managed remediation across teams.
4 How do you stay current with evolving application security threats and regulations?
5 Explain how you would design a governance framework for a portfolio of applications with varying risk levels.
Practice Interview Questions โ†’

โš ๏ธ Common Mistakes to Avoid

  • Applying without tailoring your resume to emphasize application security leadershipโ€”avoid generic cybersecurity roles.
  • Focusing only on technical skills without demonstrating business acumen or ability to communicate with non-technical stakeholders.
  • Neglecting to mention experience with compliance or regulatory frameworks, which are critical in finance.

๐Ÿ“… Application Timeline

This position is open until filled. However, we recommend applying as soon as possible as roles at mission-driven organizations tend to fill quickly.

Typical hiring timeline:

1

Application Review

1-2 weeks

2

Initial Screening

Phone call or written assessment

3

Interviews

1-2 rounds, usually virtual

โœ“

Offer

Congratulations!

Ready to Apply?

Good luck with your application to Apollo!

โ† Back to Job Listing Apply Now โ†’