Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Senior Application Security Engineer

Posted about 2 months agoViewed

View full description

💎 Seniority level: Senior, 5 years

📍 Location: US, Europe

💸 Salary: 175000.0 - 210000.0 USD per year

🔍 Industry: Cloud computing, AI

🏢 Company: CoreWeave💰 $642,000,000 Secondary Market about 1 year agoCloud ComputingMachine LearningInformation TechnologyCloud Infrastructure

🗣️ Languages: English

⏳ Experience: 5 years

🪄 Skills: PythonSQLCybersecurityKubernetesCommunication SkillsCollaborationCI/CDLinuxWritten communicationDocumentation

Requirements:
  • Bachelor’s degree in Computer Science or a related field or equivalent experience.
  • 5 years of experience in Application Security engineering and vulnerability testing.
  • Strong knowledge of authorization, authentication, and encryption protocols.
  • Experience with development teams delivering commercial software.
  • Familiarity with threat modeling and system security vulnerabilities.
  • Scripting skills in languages such as Perl or Python.
  • Proficiency in security engineering methodologies including static and dynamic code analysis.
Responsibilities:
  • Provide security consultations with engineering peers.
  • Conduct architecture reviews of new and existing code changes.
  • Perform full and complete threat models as part of the permit process.
  • Configure and manage automated and manual code reviews.
  • Lead ongoing security testing, audits, and risk analysis.
  • Engage in security incident response, risk documentation, and remediation verification.
Apply

Related Jobs

Apply
🔥 Senior Application Security Engineer
Posted 1 day ago

📍 United States

🧭 Full-Time

💸 100000.0 - 170000.0 USD per year

🔍 Benefits administration

🏢 Company: bswift

  • 5+ years of experience in application security or DevSecOps, ideally in an agile, cloud-first environment.
  • Hands-on experience with security tools and practices for application security testing, such as SAST, DAST, and IAST.
  • Deep understanding of the OWASP Top 10/LLP Top 10 and its application across the software development lifecycle.
  • Experience working within React/JS, Microsoft .NET stacks hosted in AWS Cloud.
  • Experience working with development teams to integrate security testing into CI/CD pipelines.
  • Strong cloud-native security knowledge, particularly AWS, including securing containerized applications.
  • Experience designing and implementing security training and awareness programs.
  • Proven ability to work cross-functionally to drive security initiatives.
  • Familiarity with security automation tools and the integration of these tools into development workflows.
  • Design and implement an application security program aligned with best practices and the OWASP Top 10 framework.
  • Help integrate security testing across the development lifecycle, from code analysis to deployment.
  • Work closely with engineering and DevOps teams to incorporate security testing into CI/CD pipelines.
  • Cultivate a security-first culture within the development team through training and guidance.
  • Establish a Security Ninja Champion Program to foster security champions.
  • Develop and implement application security metrics to measure program effectiveness.
  • Evaluate current application security state and identify areas for improvement.
  • Provide ongoing support and feedback to development teams regarding security concerns.
  • Offer secure design recommendations and architecture patterns.
  • Oversee penetration testing and manage related incidents.

AWSKubernetesMicrosoft .NETOAuthReact.jsCI/CD

Posted 1 day ago
Apply
Apply
🔥 Senior Application Security Engineer
Posted 3 months ago

📍 New York City, California, Colorado, Washington

💸 160000 - 200000 USD per year

🔍 Visual collaboration software

  • 5+ years experience in a product security focused role.
  • Experience with product security at a multi-tenant SaaS company preferred.
  • Experience with vulnerability management.
  • Deep understanding of web application and mobile application security risks.
  • Deep understanding of Linux, Networking, Cryptography, and Cloud Architecture fundamentals.
  • Software development experience with Node.JS or other frameworks like React, Angular, etc. is preferred.
  • Familiarity with MongoDB, Node.JS, Ruby, and/or Python is preferred.
  • Excellent command of English, both written and verbal.
  • Performing security reviews of Mural product features and architecture.
  • Manage and operate our bug bounty program.
  • Lead penetration testing and manage any risks to remediation.
  • Implementation and operation of SAST and DAST technologies in the CI workflow.
  • Working closely with Engineering teams to track and manage product risks to remediation.
  • Working closely with Engineering to increase coverage of security testing.
  • Communicating and nurturing relationships with security researchers, customers, and other stakeholders.
  • Producing metrics to help track the health of our product vulnerability management strategy.
  • Educating and evangelizing secure coding best practices.

Node.jsSoftware DevelopmentMongoDBRubyStrategyAngularReactLinuxNetworking

Posted 3 months ago
Apply
Apply
🔥 Senior Application Security Engineer
Posted 5 months ago

📍 Australia, Austria, Bangladesh, Belgium, Brazil, Canada, Colombia, Costa Rica, Croatia, Czech Republic, Denmark, Egypt, Estonia, Finland, France, Germany, Ghana, Greece, India, Indonesia, Ireland, Israel, Italy, Kenya, Mexico, Netherlands, Nigeria, Peru, Poland, Singapore, South Africa, Spain, Sweden, Switzerland, Uganda, United Arab Emirates, United Kingdom, United States of America, Uruguay

🧭 Full-Time

💸 109047 - 169455 USD per year

🔍 Nonprofit, Technology, Open Source

  • Two or more years of application security experience, with knowledge of OWASP Top Ten and CWE Top 25
  • Strong understanding of modern, object-oriented PHP development
  • In-depth experience developing or auditing JavaScript
  • Demonstrated ability to exploit and mitigate application-level vulnerabilities
  • Experience conducting software security reviews using source code inspection, manual testing, and automated scanning
  • Ability to explain security issues to non-technical audiences
  • Sensitivity to security challenges in large, international projects
  • Strong understanding of cryptography in web application security
  • Experience using Linux for web application development and deployment tasks
  • Ability to maintain focus while working remotely
  • Triage and remediate reported security issues
  • Review and deploy features developed by the Foundation and community members
  • Work with other development teams to ensure safe architectural and implementation choices
  • Test and evaluate software to find bugs before attackers do
  • Provide application security concept reviews and promote application security best practices
  • Provide support for application security incidents and operations

PHPSoftware DevelopmentBashCybersecurityJavaJavascript*NixOAuthC (Programming language)Linux

Posted 5 months ago
Apply