Remoote.app

Work from anywhere. Start here.

Free resume builderCompaniesLog in
Apply

Application Security Engineer

Posted about 2 months agoViewed

View full description

💎 Seniority level: Junior, 2+ years

📍 Location: United States

💸 Salary: 203000.0 - 225000.0 USD per year

🔍 Industry: Software Development

🏢 Company: Uniswap Labs

🗣️ Languages: English

⏳ Experience: 2+ years

🪄 Skills: Software DevelopmentBlockchainEthereumRESTful APIs

Requirements:
  • 2+ years of experience in web security, mobile security, or cryptography
  • Demonstrated proficiency in software development
  • Expertise in authentication protocols
  • Expertise in cryptography based security
Responsibilities:
  • Work with developers to improve the security of our products and services
  • Participate in technical efforts such as developing solutions to address security weaknesses and work with stakeholders to implement them
  • Partner with engineering team to assess threats and provide security guidance and documentation
  • Collaborate with the eng team to build systems at scale and prevent classes of vulnerabilities
  • Assist with security incident response as needed
Apply

Related Jobs

Apply
🔥 Application Security Engineer
Posted 7 days ago

📍 AMER, EMEA, APAC

🧭 Full-Time

🔍 Security

🏢 Company: asymmetric.re

  • Familiarity and practical experience with Application Security Testing (AST) tools.
  • Proven experience as a consultant, engineer, or auditor, ideally working on/with web applications.
  • Prior experience working with open source development practices.
  • Willingness and aptitude to work with and write in multiple languages, mainly Go, Rust, Python, and JavaScript.
  • Experience with reverse engineering and/or fuzzing.
  • Experience with code reviews.
  • Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities.
  • Develop security tooling and developer workflows to aid in the early detection of vulnerabilities.
  • Collaborate with core contributors to conduct internal security audits of off-chain infrastructure.
  • Harden CI/CD pipelines and constrain the attack surface of off-chain components.
  • Collaborate with core contributors to reduce supply-chain risk.
  • Triage and respond to potential security incidents across all parts of the stack.
  • Work in a diverse decentralized team environment with web3 professionals.
  • Clearly communicate security risks and solutions.
  • Adhere to the highest standards of integrity, trust, and professionalism.

DockerPythonBlockchainCybersecurityJavascriptGoRustWeb3.jsCI/CDRESTful APIsLinuxDevOps

Posted 7 days ago
Apply
Apply
🔥 Senior Staff Application Security Engineer
Posted 14 days ago

📍 United States

🧭 Full-Time

💸 181000.0 - 266000.0 USD per year

🔍 Software Development

🏢 Company: Life360👥 251-500💰 $33,038,258 Post-IPO Equity over 2 years ago🫂 Last layoff about 2 years agoAndroidFamilyAppsMobile AppsMobile

  • 10+ years of hands-on experience in application security, securing cloud-based and containerized environments.
  • Strong understanding of cybersecurity threats, vulnerabilities, and mitigations, with a proactive approach to embedding security throughout the product lifecycle.
  • Deep expertise in secure design, threat modeling, offensive security, and risk reduction beyond compliance checklists.
  • Experience with modern application stacks, security tooling, and DevSecOps pipelines, with a passion for security automation and pragmatic defenses.
  • Working knowledge of one or more programming languages (preferably Python) and experience writing software that enhances security processes.
  • Exceptional ability to distill complex security concepts into clear actions, driving alignment across engineering teams without direct authority.
  • A collaborative mindset with a strong ability to build relationships, influence cross-functional teams, and lead high-impact security initiatives.
  • Creative and strategic thinker who can holistically reduce risk, scale security through smart design, and bring clarity to ambiguous challenges.
  • A track record of contributions to the security community (research, blogging, presentations, bug bounty) is a plus.
  • Strong bias for action, ownership, and delivering measurable improvements to security posture.
  • Drive “shift left” security initiatives, embedding security best practices seamlessly into the software development lifecycle to proactively identify and mitigate risks.
  • Assess third-party vendors and cloud service providers to ensure compliance with security and privacy standards.
  • Participate in the security on-call rotation to respond to and mitigate security incidents.
  • Document security-relevant architectural decisions and ensure security considerations are integrated into system designs.
  • Serve as a trusted advisor, offering web and mobile security expertise to enable engineering and product teams to make informed, confident decisions.
  • Perform technical security assessments and reviews, research, uncover, and reproduce vulnerabilities, design secure protocols and systems, and write tests to drive architecture changes
  • Provide guidance and education to engineering and product teams on available security controls and their appropriate use to help prevent vulnerabilities.
  • Partner closely with product and engineering teams to design solutions that are secure by default
  • Scale security efforts by integrating automation for the identification, prioritization, and remediation of vulnerabilities. Empower engineering teams through automation, security guidance, tooling, patterns, and training to scale security practices across the organization.

AWSDockerPythonSoftware DevelopmentCloud ComputingCybersecurityKubernetesAPI testingREST APICI/CDDevOpsRisk Management

Posted 14 days ago
Apply
Apply
🔥 Staff Application Security Engineer
Posted 21 days ago

📍 US

🧭 Full-Time

🏢 Company: NerdWallet👥 501-1000💰 Secondary Market almost 4 years ago🫂 Last layoff 8 months agoInternetConsumerFinancial ServicesPersonal Finance

  • 8 + years of professional experience as a security engineer, software engineer, site reliability engineer, penetration tester/ red team member, or security consultant
  • 5+ years of experience working in Agile development, with expertise in technologies such as cloud environments (e.g., AWS), application security testing tools (e.g., SAST, DAST, SCA), infrastructure as code (e.g., Terraform), containers (e.g., Docker, Kubernetes), continuous integration (e.g., Jenkins, GitHub Actions), integration of security testing tools into CI pipelines, defect tracking (e.g., Jira), and source code management (e.g., GitHub)
  • Advanced knowledge of: Python, Typescript, and other languages (Go, PHP)
  • High-level understanding of: security weaknesses, exploits, attacks and mitigations
  • In-depth knowledge of common application and network protocols, cryptographic primitives, authentication and authorization protocols, as well as common security threats, including attack techniques, evasive techniques, and preventative and defensive methods
  • Experience leading or participating in Security Development Lifecycle Practices, Threat Modeling, Technical Design Review, and Security Code Review
  • Proven success as a collaborator with the ability to convey high-level security concepts to team members across the organization and technical and non-technical stakeholders at all levels
  • Ensure the timely delivery of high-priority product security initiatives
  • Be a strategic advisor to the Application and Product Security Program
  • Drive key initiatives like Supply Chain Security, Authentication, and Authorization improvements
  • Participate in expanding and maturing NerdWallet’s SSDLC program and its early adoption
  • Partner with cross-functional teams to identify product and application vulnerabilities and propose potential remediation opportunities and prioritization
  • Design and develop security tools and processes to be leveraged by development teams
  • Work closely with engineering to sustain processes or convert manual integrations to automated pipeline activities
  • Help build the Red Team
  • Be a technical mentor to junior members of the team and help develop their skills

AWSDockerPythonAgileCloud ComputingCybersecurityJenkinsKubernetesTypeScriptAlgorithmsData StructuresCI/CDRESTful APIsMentoringLinuxDevOpsRisk ManagementSoftware Engineering

Posted 21 days ago
Apply
Apply
🔥 Staff Application Security Engineer
Posted 28 days ago

📍 United States, Canada

🧭 Full-Time

💸 154160.0 - 281060.0 CAD per year

🔍 Software Development

🏢 Company: Webflow👥 501-1000💰 $120,000,000 Series C about 3 years ago🫂 Last layoff 8 months agoCMSWeb HostingWeb Design

  • 7+ years of experience in application security, including 2+ years of software development focused on security.
  • Expertise in secure software design, secure coding, and web application security, with a strong commitment to risk reduction and sustainable security practices.
  • Experience with Threat Modeling, penetration testing, and identifying high-complexity application vulnerabilities.
  • Experience with software supply chain security and led bug bounty programs and security tooling initiatives.
  • Successfully implemented and improved secure development lifecycle (SDLC) processes, including planning, communication, and automation.
  • Led and delivered multi-quarter, complex security projects, application security roadmaps, and medium to large security programs in collaboration with engineering teams.
  • Experience mentoring other application security engineers and fostering security best practices across organizations.
  • Collaborate with the Webflow engineering team to secure Webflow’s web application platform and ecosystem.
  • Bring security best practices to the software development lifecycle.
  • Work as part of a team to champion security standards while balancing business strategies and requirements.
  • Support Webflow’s security current and future compliance frameworks
  • Work to find security vulnerabilities through grey-box techniques, and propose solutions at the architecture and code level to mitigate findings.
  • Contribute code and architecture improvements to enable security within Webflow’s application for engineers.
  • Cross-train entry and mid-level application security engineers

AWSDockerPythonSoftware DevelopmentCybersecurityGitKubernetesCI/CDRESTful APIsMentoringDevOpsComplianceJSON

Posted 28 days ago
Apply
Apply
🔥 Staff Application Security Engineer (Security)
Posted about 2 months ago

📍 United States, Canada

🧭 Full-Time

💸 200000.0 - 250000.0 USD per year

🔍 Blockchain, Crypto

🏢 Company: Phantom👥 51-100💰 $109,000,000 Series B about 3 years agoCryptocurrencyEthereumBitcoinFinTech

  • 7+ years of experience in offensive security techniques
  • Strong understanding of security risks and vulnerabilities
  • Proficient in code review for JavaScript & Typescript
  • Ability to write PoC’s to prove vulnerabilities
  • Strong analytical and problem-solving skills
  • Perform regular security assessments on projects and infrastructure
  • Identify and mitigate security vulnerabilities in code and systems
  • Keep up to date with offensive security techniques and application security threats
  • Write detailed reports of findings and present to teams
  • Implement secure coding practices
  • Participate in incident response and management
  • Lead large cross-team projects

BlockchainJavascriptTypeScript

Posted about 2 months ago
Apply