1
Ask HN: How to Transition from Software Engineering to Application Security?
I'm a mid-level software engineer with mostly back-end and some full-stack experience. I have experience with using static code analysis tools to identify and fix vulnerabilities found in the OWASP Top 10, and I'd like to make a transition into Application Security full-time because I'm really interested in this field.
I've had a few AppSec interviews but most of the time my job applications are ignored. At my current job I don't have the opportunity to work on anything security related and I'm not sure what I can do to gain more security skills and make my resume marketable for AppSec roles, not just SWE. Of course I've been taking Udemy classes and watching YouTube videos on OWASP vulnerabilities but it seems silly to put on my resume that I merely took some classes.
I'm located in the Bay Area but have also been applying to remote roles.