Skip to main content

Senior Lead Application Security Engineer, Architecture


DraftKings is bringing sports fans closer to the games they love and becoming an essential part of their experience in the process. An industry pioneer since our founding in 2012, we believe we can continue to define what it means to be a technology company in sports entertainment. We love what we do and we think you will too.


DraftKings is seeking to hire a Senior Application Security Engineer to ensure our micro-service and application software as well as our development practices are implemented with best practice security standards. You will help validate our current software as well as putting in place automation and processes for analyzing our application and micro-service security compliance. The role also offers an opportunity to teach our engineers through workshops, spotlights and tutorials as you see fit. You’ll work with our key Architects and Engineers as well as the Senior Director of Architecture as part of our Architecture Strategy Team.


  • Setup and lead secure coding reviews and help build out this area as a key aspect in technical planning

  • Work with our Technical Program Manager to establish strong lines of communication with our engineering teams

  • Lead security training, guidance, documentation for development teams

  • Lead the development of automated guardrails and feedback tools to fit into our SDLC

  • Work with SecOps and engineering teams to choose and integrate tooling for DAST, SAST and IAST on our software


  • 5+ years experience working in some combination of any of the following: secure coding, threat modeling, authentication/authorization and identity management, cryptography, application security

  • 2+ years of experience with securing .Net applications preferred

  • Experience implementing or using code evaluation tools such as Snyk, Veracode and scanning tools such as Rapid7 InsightAppSec

  • It is a plus if you have any of the following certifications:

    • ISC2 - CSSLP – Certified Secure Software Lifecycle Professional

    • GIAC Certified Web Application Defender (GWEB)

  • Ability to handle ambiguity and wide surface areas and identify focused, targeted projects from those areas

  • Experience with multiple programming languages with a strong preference for C# or Java as well as CSP, JS, Node, Typescript, python, etc

  • Experience with cloud, e.g. AWS, and containerization technologies such as Kubernetes, Helm, Docker, GitOps, etc

  • Experience with infrastructure as code such as Terraform, etc

  • Strong ability to collaborate with and explain complex ideas to a diverse audience of different technology levels

  • Capable of leading productive, collaborative discussion and reaching a resolution with a group of skeptics or conflicting perspectives

  • Approach problems with a “Shift Left Security” mindset and DevSecOps perspective

Who are we a good fit for? 

We love working with talented people but more than that, we seek out compassionate co-workers with a collaborative spirit. Our work moves quickly and we’re great at coming together to find creative solutions to some of tech’s most interesting problems. If that sounds good to you, join us. 

We are DraftKings.

We’re inspired by our shared passion for developing creative solutions to complex challenges and empowering the people around us to do their best work. We are industry leaders in the digital entertainment and technology space propelled by constant curiosity and diverse perspectives.

Our teams are fueled by innovation. We are looking ahead, building what’s next, and continuously reinventing the industry. We’re a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston, with teams around the world and an expanding global presence.

Join Us!

We strive to create a place where all feel safe, empowered, engaged, championed, and inspired. DraftKings is proud to be an equal opportunity employer. This means we do not tolerate discrimination of any kind and are committed to providing equal employment opportunities regardless of your gender identity, race, nationality, religion, sexual orientation, status as a protected veteran, or status as an individual with a disability.

Ready to build what’s next? Apply now.

As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment.

Join Our Talent Community

Get discovered. Introduce yourself, and we’ll get in touch if there’s a role that seems like a good match.

Join now