Senior Application Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Application Security Engineer working remotely to mature application security program. Collaborating with teams to ensure secure software development throughout the entire lifecycle.
Responsibilities:
- Play a key role in advancing and maturing our application security program by establishing secure development standards and embedding security throughout the entire software development lifecycle (SDLC)
- Work closely with development, DevOps, and DevSecOps teams to ensure security is integrated from the outset
- Managing vulnerabilities (keeping stuff patched and secure)
- Checking open-source code for security issues (OSA / SCA)
- Doing and improving code security reviews
- Hardening API security (REST, GraphQL)
- Doing threat modeling (STRIDE, PASTA, etc.) for new features
- Launching and running the bug bounty program!
- Building a "Security Champions" program across the engineering teams
- Working with external teams on penetration tests
- Sharing your security knowledge with everyone
Requirements:
- Min. 5 years in AppSec or a similar security role
- Hands-on with SAST/DAST/IAST/RASP tools—especially Snyk and/or Acunetix
- Real-world experience with vulnerability management and threat modeling. ( STRIDE, PASTA)
- Experience launching or managing a bug bounty program
- Experience with pentesting or working closely with pentest teams
- Know your stuff when it comes to OWASP standards (ASVS, WSTG, etc.) and SSDLC principles
- Good at API security (REST, GraphQL)
- Can read and understand code in: PHP, JS, Go, C#, and C++ (especially Unity for desktop/mobile)
- Broad knowledge across application and infrastructure security
- Nice to Have Security certs like OSCP, GWEB, CSSLP
- Experience with Unity / game engine security
- Familiar with cloud security (AWS, AliCloud)
- Know how to put security checks into CI/CD pipelines (GitHub Actions)
Benefits:
- Fully Remote
- High Flexibility
- Bi-Annual Company Wide Trips
Similar Jobs
Senior Application Engineer, IT Engineering
Senior Application Engineer designing and building internal tools for Phantom's operations. Utilizing AI to automate workflows and enhance infrastructure management.
Senior Application Platform Engineer
Senior Software Engineer shaping innovative solutions at Qventus, focusing on healthcare transformation. Collaborating with diverse teams to enhance patient care through technical expertise.
Application Engineer – Mining
Application Engineer responsible for engineering activities for Conveyor Products. Offering support and troubleshooting in Arizona while leading customer projects and strategic implementations.
Senior Principal Applications Engineer
Senior Principal Applications Engineer at NXP working with teams on product improvements and new features. Leading board validation and customer support issues while developing application collateral.
Application Engineer
Application Engineer providing technical packaging solutions in Meat and Dairy markets. Collaborating with customers and internal teams to enhance application performance and drive growth.
Senior Databricks Application Engineer
Senior Databricks Application Engineer designing Databricks Apps and developing data solutions remotely. Collaborating on analytics workflows and cloud integration for IT Services.
Senior Application Security Engineer
Senior Application Security Engineer at Amerisure designing and maintaining security controls for applications. Leading security monitoring and vulnerability management in a DevSecOps environment.
Full-stack AI Application Engineer
Full-stack Engineer at ThirdLaw building AI-native platform features. Working in a small team to deliver impactful solutions to ensure AI trust and safety.
Senior Application Security Engineer
Senior Application Security Engineer at RevenueCat ensuring security across web and mobile applications. Collaborating with engineering teams and external parties to create secure frameworks and support bug bounty programs.
Technology Field Application Engineer
Technology Field Application Engineer at Arrow Global Components facilitating solutions for customer designs through technical leadership and engineering investments. Partnering with sales teams and managing supplier expectations.
Application Security Engineer
Application Security Engineer responsible for embedding security in software delivery at SNHU. Collaborating with DevSecOps teams to ensure application security in various approved remote states.
Application Engineer – Europe South
Application Engineer providing technical expertise and support for Mecademic's robotic solutions. Focused on Europe South region while engaging with engineers and integrators.
Application Engineer – DACH Region
Technical expert for Mecademic's robotic solutions in the DACH region. Provide in-depth technical support and demonstration for successful deployment and optimization of robotic solutions.
Principal AI Application Engineer
Principal AI Application Engineer creating modular AI solutions for government services at Code for America. Collaborating with various teams for effective public service delivery.
Application Engineer
Drive technical support and training for Cimatron CAD and Mold products while collaborating with sales teams in Mexico. Oversee customer implementation projects and maintain high-quality customer satisfaction levels.
Application Support Engineer
Application Support Engineer responsible for resolving application and infrastructure issues in customer-hosted environments at Lumin Digital. Collaborating with internal teams to ensure smooth client operations.
Senior Cloud Application Support Engineer
Cloud Engineer providing advanced support and troubleshooting for cloud-based services in a managed service environment. Leading problem resolution efforts and improving service offerings using Azure expertise.
Dynamics 365 Application Support Engineer
Dynamics 365 Application Support Engineer managing application issues and ensuring customer satisfaction. Supporting Microsoft's Dynamics 365 systems while adhering to IT security principles and best practices.
Application Security Engineer – Threat Modeling, SAST, SCA
Application Security Engineer at Netsentries performing secure code assessments and Threat Modeling for enterprise web/mobile applications. Collaborating with development teams to identify and remedy vulnerabilities.
Mechatronics Application Engineer
Mechatronics Application Engineer focused on customer automation in North America. Supporting technical sales and providing in-depth knowledge of mechatronic solutions.