Application Security Engineer
New
A
ArcadiaEnergy Tech
Work anywhere in the USFull-TimeMiddle
Salary131,250 - 235,156 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 3–5 years
- Required Skills
- DockerKubernetesCI/CD
Requirements
- 3–5 years of dedicated Application Security experience in a SaaS or cloud-native environment.
- Hands-on proficiency with at least two of the following: SAST, DAST, SCA, or CSPM tooling (e.g., Snyk, Checkmarx, Semgrep, Wiz).
- Strong working knowledge of CI/CD pipelines (e.g., GitHub Actions, Jenkins, GitLab CI).
- Ability to write and maintain pipeline integrations.
- Experience with container security (Docker, Kubernetes).
- Experience with API security patterns (REST, GraphQL).
- Demonstrated ability to communicate technical risk to non-security engineers.
Responsibilities
- Own the end-to-end vulnerability management lifecycle: triage, prioritize, and drive remediation of findings from SAST, DAST, and SCA tooling.
- Maintain, optimize, and extend security tooling integrations within the CI/CD pipeline.
- Launch and run a Security Champions program, including workshops and office hours.
- Act as the application-layer subject matter expert during security incidents.
- Partner with Product and Engineering leadership to introduce security touchpoints earlier in the SDLC.
- Perform threat modeling and design reviews.
View Full Description & ApplyYou'll be redirected to the employer's site
