RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer

1 day, 17 hours ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS Burp Suite CI/CD Docker GitHub GitHub Actions Go Helm Java JavaScript Kotlin Kubernetes Penetration Testing Python Terraform TypeScript
Apply Now
Alphasense

Alphasense

Alphasense is a global leader in providing high-quality gas sensors and air quality monitors to industrial OEMs. With over 25 years of experience, the company offers a wide range of innovative gas sensor technologies for various applications, including...

Industrial Conglomerates
51-250
Founded 1996
View All Jobs 171

Description

  • Own the code and pull-request security enforcement layer that every change passes through.
  • Operate and continuously tune the SAST, SCA, secrets-detection, and SBOM pipeline.
  • Design and harden deterministic security gates for AI-authored and human-authored code.
  • Review human-authored and agent-authored pull requests and contribute AI-generated patch proposals.
  • Own the security approach for AI-assisted development tools and workflows, including agentic systems and MCP integrations.
  • Author and roll out AI-assisted development security policy covering prompt injection, scope governance, credential handling, and audit attribution.
  • Threat model new AI features, agent gateways, MCP connector architecture, and AI workflows in the research platform.
  • Scale threat modeling and embed security acceptance criteria and verification hooks into the product design process.
  • Partner with engineering and product security teams to build practical security training and developer enablement programs.
  • Drive fast resolution of critical findings, support testing and posture programs, and lead response for application-layer incidents and integration compromises.

Requirements

  • 6+ years of engineering experience, including 4+ years in a dedicated AI Application Security or Product Security role at a SaaS or cloud-native company.
  • Hands-on, recent development experience; ability to write code and read pull requests fluently in at least two of Python, TypeScript/JavaScript, Java/Kotlin, or Go.
  • Comfort working with Terraform, Helm, and Kubernetes manifests.
  • Direct experience building, integrating, or operating agentic AI and MCP systems in production or governed engineering workflows.
  • Production operation of a SAST/SCA pipeline at scale using tools such as Snyk, Semgrep, GitHub Advanced Security, Checkmarx, Veracode, or equivalent.
  • Demonstrated ownership of a threat modeling or developer security training program.
  • Ability to think in layered, defense-in-depth security models across code, contract, behavior, simulation, and data.
  • Strong written communication skills for policy, guidance, runbooks, and PR feedback.
  • Open-source contributions to security tools, MCP servers/frameworks, agent harnesses, or threat modeling tools are preferred.
  • Experience shipping deterministic compliance gates accepted by external auditors is preferred.
  • API security and DAST experience, plus modern container/Kubernetes security, is preferred.
  • AWS security depth and exposure to AI/ML production environments are preferred.
  • Experience supporting customer-facing security posture dashboards or DDQ responses, ideally in a regulated industry, is preferred.
  • Public writing or speaking on developer security, AI/agent security, or AppSec automation is preferred.
  • Pre-IPO experience or familiarity with SOC 2 Type II, ISO 27001:2022, ISO 42001, SOX, or GDPR is preferred.
  • Certifications such as OSWE, OSCP, CSSLP, AWS Security Specialty, or CISSP are preferred.

Benefits

  • Base salary range of $157,000 to $216,000 USD.
  • Performance-based bonus eligibility.
  • Equity compensation.
  • Generous benefits program.
  • Remote-first work environment.
  • High autonomy in a senior individual contributor role.
  • Clear path to Staff / Tech Lead as the team grows.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Rubrik

Application Security Intern

Rubrik 1K-5K IT Services

Rubrik is hiring an Application Security Engineering intern to help strengthen its secure software development life cycle and support security work across products and applications.

India Internship Entry Level Application Security Engineer Software Engineer
Cybersecurity Docker Go JavaScript Kubernetes Microservices Python Scala TypeScript
16 minutes ago
Tines

Senior Product Security Engineer

Tines 51-250 Construction & Engineering

Tines is hiring a Senior Product Security Engineer in a remote U.S. role to lead product security efforts and scale security controls across an AI-forward engineering environment as the company’s product portfolio grows.

United States Full-time Senior Application Security Engineer
$218k-$235k
AWS CI/CD DevSecOps Docker Kubernetes Ruby Rust TypeScript
1 hour, 1 minute ago
GuidePoint Security

Senior Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Security Engineering professional to implement and operationalize application security tooling and practices across software development and CI/CD environments for a broad range of customer-facing security engagements.

United States Full-time Senior Application Security Engineer
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins
4 hours, 46 minutes ago
GuidePoint Security

Application Security Engineer (Remote in the U.S.)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring an Application Security professional to run and operationalize security testing tools across client development environments and help teams identify and remediate web application risks.

United States Full-time Mid Level Application Security Engineer
Azure Bamboo C# C++ CI/CD GitHub Java JavaScript Jenkins PHP Python
11 hours, 52 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers