Senior Application Security Engineer
New
M
Monarch MoneyFintech / Personal Finance
Remote (US), 9 AM – 2 PM PT synchronous collaborationFull-TimeSenior
Salary$180K - $215K
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- Python
Requirements
- 5+ years of experience in security engineering with depth in application and AI security.
- Demonstrated expertise in threat modeling, SAST/DAST, and secure code review.
- Proficiency in Python and deep understanding of web application security (OWASP Top 10, API security, authentication/authorization patterns).
- Hands-on experience with application security tools such as Semgrep, Burp Suite, or Nuclei.
- Familiarity with AI/ML security risks including prompt injection, model abuse, and LLM supply chain threats.
- Transformative AI fluency with a proven track record of using AI tools to accelerate security work and build automation.
- Strong vulnerability management and remediation tracking skills.
- Ability to work effectively in a fully remote environment with synchronous collaboration during core PT hours.
Responsibilities
- Conduct application security reviews, threat modeling, code reviews, and risk assessments for new features and product changes.
- Perform and improve SAST/DAST operations, including triage, validation, and remediation tracking within CI/CD pipelines.
- Manage the vulnerability backlog, including maintaining triage criteria, remediation tracking, and escalation paths.
- Perform and coordinate penetration testing and security assessments against web and API surfaces.
- Apply and improve AI security review processes to mitigate risks such as prompt injection, data leakage, and supply chain threats.
- Build and maintain security automations and AI-powered tools.
- Participate in the weekly security on-call rotation.
View Full Description & ApplyYou'll be redirected to the employer's site