RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer

6 hours, 50 minutes ago
United States, Canada
Full-time
Senior
Application Security Engineer
Cybersecurity
Encryption GCP Linux OAuth Penetration Testing Python Ruby
Apply Now
Apollo.io

Apollo.io

Apollo.io is a sales intelligence platform that helps businesses find, engage, and convert leads at scale with a database of over 275 million contacts and 73 million companies.

Professional Services
251-1K
Founded 2015
$251M raised
View All Jobs 3

Description

  • Own and continuously improve the secure software development lifecycle for Apollo applications.
  • Perform application security reviews, threat modeling, and deep code-level analysis for high-impact features before launch.
  • Provide practical security architecture guidance to Engineering, Product, and IT teams.
  • Define and maintain application-security guardrails, secure design expectations, code review standards, and risk models.
  • Drive vulnerability management across internal reviews, bug bounty, pentests, SCA/runtime findings, and other security signals.
  • Validate findings, prioritize risk, route issues, and track remediation and verification through SLAs.
  • Read code, identify root cause, propose fixes, and directly implement or support remediation for complex vulnerabilities.
  • Perform hands-on validation and offensive testing, including exploit development, bypass testing, and red-team-style exercises.
  • Configure and improve AppSec tooling, integrations, dashboards, and related controls to reduce noise and improve coverage.
  • Embed AI-specific security checks into SSDLC reviews and partner on secure design for AI systems and AI-powered features.
  • Support security enablement for engineers and security champions through training, guidance, secure patterns, and documentation.
  • Produce clear metrics, narratives, and written documentation to improve AppSec visibility and decision-making.

Requirements

  • 5+ years of software engineering or application security experience in modern SaaS environments.
  • Strong software development skills with the ability to read, write, and ship production code.
  • Ruby experience is highly valuable; Python or similar scripting ability is a plus.
  • Strong Linux and cloud fundamentals, ideally with experience in GCP-backed environments.
  • Deep familiarity with common AppSec issues, secure design, authentication and authorization, vulnerability management, and developer security tooling.
  • Demonstrated ability to perform deep code review, penetration testing, and exploit-oriented validation.
  • Ability to fix vulnerabilities directly or work closely with engineers to land durable remediations.
  • Experience handling findings from bug bounty programs, pentests, internal reviews, or automated security tooling through closure and verification.
  • Experience using AI-assisted tools, automations, APIs, or structured workflows to improve engineering or security processes at scale.
  • Experience securing AI-powered systems or features, including AI API exposure, prompt and response handling, data protection, misuse scenarios, and monitoring expectations.
  • Strong written and verbal communication, stakeholder management, and influencing skills.
  • Preferred: experience supporting or leading security reviews for AI-native products, internal agents, or AI-assisted engineering workflows.
  • Preferred: experience improving secure-by-design practices and AppSec observability in a fast-moving engineering organization.
  • Preferred: experience with security training, developer enablement, or security champions programs.
  • Preferred: relevant security certifications.

Benefits

  • Tier 1 pay range: $218,000–$273,000 USD for San Francisco, New York City, and Seattle.
  • Tier 2 pay range: $190,000–$237,000 USD for all other US locations.
  • Additional equity may be included.
  • Company bonus or sales commissions/bonuses may be included.
  • 401(k) plan.
  • At least 10 paid holidays per year plus flex PTO.
  • Parental leave.
  • Employee assistance program and wellbeing benefits.
  • Global travel coverage.
  • Life, AD&D, STD, and LTD insurance.
  • FSA/HSA and medical, dental, and vision benefits.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Mozilla

Firefox Security Student Worker

Mozilla 251-1K Internet Software & Services

Mozilla’s Firefox Application Security Team is hiring a university student in Germany to help improve the security of Firefox and the broader web through application security work in Berlin.

Germany Part-time Entry Level Application Security Engineer
C++ Python
5 hours, 35 minutes ago
Nebius

Application Security Engineer

Nebius 51-250 Internet Software & Services

Nebius is hiring an Application Security Engineer to help secure its AI cloud platform by identifying vulnerabilities, improving secure development practices, and supporting application security across the software lifecycle.

United Kingdom Europe Netherlands Czech Republic Germany Full-time Mid Level Application Security Engineer
$81k-$259k
Burp Suite Cybersecurity Go Java JavaScript Linux OpenID Connect Penetration Testing Python SAML
1 day, 5 hours ago
GuidePoint Security

Senior Application Security Engineer - Southeast region (Remote)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a senior Application Security consultant to help client organizations strengthen and operationalize their AppSec programs through a mix of advisory work, hands-on engineering, and executive-level guidance.

United States Full-time Senior Application Security Engineer
AWS Azure CI/CD DevSecOps GCP Kubernetes Secrets Management
1 day, 6 hours ago
Spotify

Security Engineer- Product Security

Spotify Media

Spotify is hiring a Security Engineer for Product Security to secure its platform, infrastructure, and engineering initiatives for hundreds of millions of users across London or Stockholm.

United Kingdom Sweden Full-time Mid Level Application Security Engineer
Agile C++ CI/CD Encryption Generative AI Java Python Scala TypeScript
1 day, 6 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers