RemoteLeaf Logo
Log in Sign up

Senior Engineer, Security (AppSec)

3 hours, 49 minutes ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS Bash CI/CD DevSecOps HIPAA Kubernetes Python SIEM
Apply Now
Arcadia

Arcadia

Arcadia provides a healthcare data platform that enables organizations to unify diverse data sources, derive actionable insights through analytics, and enhance patient outcomes by delivering high-quality care experiences.

IT Services
251-1K
Founded 2002
$154M raised
View All Jobs 17

Description

  • Design, implement, and maintain application security controls across Arcadia’s cloud-native SaaS platform.
  • Partner with Product and Engineering teams to embed security into system design, development workflows, and CI/CD pipelines.
  • Conduct threat modeling, architecture reviews, and secure design assessments for new and existing services.
  • Own and improve vulnerability management processes, including identification, prioritization, and remediation tracking.
  • Implement and maintain security tooling such as SAST, DAST, dependency scanning, container scanning, and secrets detection.
  • Participate in incident response activities including detection, investigation, containment, and remediation.
  • Monitor and analyze logs, alerts, and security events to identify suspicious activity and emerging threats.
  • Contribute to detection engineering by tuning alerts, improving signal quality, and reducing noise.
  • Build security-as-code solutions to automate control enforcement, validation, and remediation.
  • Support secure AWS architecture and identity/access management practices across AWS, Okta/Auth0, and SaaS platforms.
  • Translate compliance requirements into practical technical controls and support audits, evidence collection, and continuous control monitoring.

Requirements

  • 6+ years of experience in application security, cloud security, or security engineering roles.
  • Strong hands-on experience securing cloud-native, SaaS-based environments.
  • AWS experience is required.
  • Solid understanding of application security principles and common vulnerabilities, including OWASP Top 10.
  • Experience with secure software development practices and CI/CD integration.
  • Understanding of cloud security architecture and IAM.
  • Experience with incident detection and response fundamentals.
  • Experience with security tools such as SIEM, SAST/DAST, EDR, vulnerability scanners, and cloud security platforms.
  • Ability to script and automate security workflows using Python, Bash, or similar languages.
  • Strong analytical skills and the ability to clearly communicate security risks and recommendations.
  • Experience in healthcare or other regulated industries is preferred.
  • Familiarity with Kubernetes, container security, and modern DevSecOps tooling is preferred.
  • Experience contributing to detection engineering or threat analysis efforts is preferred.
  • Relevant certifications such as AWS Security Specialty, CISSP, CCSP, or GIAC are preferred.

Benefits

  • Salary range of $140,000 to $175,000 per year.
  • Flexible, remote-friendly work environment.
  • Employee-driven programs and initiatives for personal and professional development.
  • Opportunity to work in a senior, high-impact role at a mission-driven healthcare company.
  • Hands-on work with modern cloud and application security challenges.
  • Be part of a talented, energized, diverse, and purpose-driven community.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Omilia

Senior Product Security Analyst

Omilia 251-1K IT Services

Omilia is hiring a Senior Product Security Analyst to own application and product security for assigned SaaS products and help drive secure design, risk-based release decisions, and program maturity as the company scales.

United States Canada United Kingdom Greece Poland Portugal Full-time Senior Application Security Engineer
Agile AWS Microservices Penetration Testing
34 minutes ago
EasyPost

Application Security Engineer

EasyPost 51-250 Air Freight & Logistics

EasyPost is hiring a remote Application Security Engineer III to lead security architecture and embed application security across the software lifecycle for its shipping platform.

United States Full-time Senior Application Security Engineer
$150k-$173k
AWS Azure CI/CD DevSecOps GCP Go HIPAA Linux macOS Python REST API Ruby Rust
3 hours, 19 minutes ago
Lucidya

Application Security Engineer

Lucidya 51-250 Media

Lucidya is hiring its first dedicated Application Security Engineer to strengthen secure development practices and embed security across its AI-native customer experience platform as the company scales globally.

Saudi Arabia Junior Application Security Engineer
AWS CI/CD Penetration Testing React Ruby on Rails
3 hours, 34 minutes ago
Anchorage Digital

Member of Technical Staff, Security Operations

Anchorage Digital 251-1K Capital Markets

Anchorage Digital is hiring a remote Member of Technical Staff, Security Operations to help secure its regulated crypto platform by building defenses, investigating threats, and supporting vulnerability management across code, cloud, and infrastructure.

United States Full-time Mid Level Application Security Engineer Security Engineer
AWS Blockchain Burp Suite Go Penetration Testing Python
4 hours, 4 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers