Senior Application Security Engineer

5+ years of experience in Application Security, Cybersecurity Engineering, Software Engineering or a related field. Experience ensuring security in high-compliance environments like PCI DSS, HIPAA or NIST. U.S. citizenship required. Strong understanding of Linux, containerization and orchestration, and virtual machines. Networking fundamentals: core protocols and secure configurations. Deep understanding of incident response processes and root cause analyses. Clear, concise writing and strong documentation habits. Familiarity with DevOps practices, CI/CD. Familiarity with security tooling such as Static & Dynamic Analysis (SAST/DAST). Familiarity with networking, web protocols. Working grasp of PKI, TLS and cryptographic primitives.

Find vulnerabilities in software using attacker mindset, code reviews, static and dynamic analysis. Fix vulnerabilities across the full stack (browser to kernel) by scanning, identifying misconfigurations, and hardening environments. Improve the security posture of infrastructure by reviewing IAM, logging, auditing, and monitoring. Mentor other engineers on security best practices and improve processes to shift security left.