AppSec Jobs
← Back to all jobs

Flexera

Senior Application Security Engineer

Bengaluru, Karnataka, IndiaWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Flexera

Flexera is a prominent provider of hybrid IT asset management (ITAM) and FinOps solutions. The company helps organizations optimize their technology investments through AI-enabled tools that discover, manage, and secure software, SaaS, hardware, cloud instances, and containers. With over 30 years of experience, Flexera serves more than 50,000 customers globally and employs over 2,000 people. Founded in 1987, Flexera has evolved from a spinoff of Macrovision and has expanded its offerings through strategic acquisitions. Its core products include the Flexera One platform for IT spend optimization, the FlexNet Manager Suite for software license compliance, and the FlexNet Operations Cloud for software delivery and entitlement management. Flexera's solutions address various challenges, including vendor compliance and data consolidation, helping clients achieve operational efficiencies and growth.

Industry

information technology & services

Employees

2,100

691 engineers

Revenue

$221M

Website

Visit →

Security at Flexera

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Flexera's AppSec philosophy centers on developer enablement and 'shifting left' within the development lifecycle.
  • The team aims to build 'paved roads' rather than simply checking compliance boxes, focusing on empowering developers to handle security without being a bottleneck.
  • Their risk philosophy is supported by comprehensive vulnerability intelligence and risk management, utilizing research from Secunia to provide reliable data for decision-making.

Security Team

  • The security function is led by Conal Gallagher, who serves as both Chief Information Officer (CIO) and Chief Information Security Officer (CISO).
  • The AppSec team is actively hiring, as evidenced by a recent posting for a Senior Application Security Engineer.
  • While the exact reporting line for AppSec (CISO vs. CTO) is not explicitly stated, the CISO role is clearly defined at the executive level.
  • The team emphasizes a 'Security Champions' model to scale security culture across the organization.

Key Initiatives

  • Flexera's primary AppSec initiatives include the implementation of a 'Security Champions' program to scale security culture and the integration of security gates into CI/CD pipelines as part of a Secure Software Development Lifecycle (SSDLC).
  • For vulnerability management, they maintain a public intake process for reporting suspected security vulnerabilities in Flexera products.
  • They also produce an annual Software Vulnerability and Threat Intelligence Report based on their Secunia Research.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.