RemoteLeaf Logo
Log in Sign up

Senior Engineer, Security (AppSec)

2 months, 1 week ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS Bash CI/CD DevSecOps HIPAA Kubernetes Python SIEM
Apply Now
Arcadia

Arcadia

Arcadia provides a healthcare data platform that enables organizations to unify diverse data sources, derive actionable insights through analytics, and enhance patient outcomes by delivering high-quality care experiences.

IT Services
251-1K
Founded 2002
$154M raised
View All Jobs 14

Description

  • Design, implement, and maintain application security controls across Arcadia’s cloud-native SaaS platform.
  • Partner with Product and Engineering teams to embed security into system design, development workflows, and CI/CD pipelines.
  • Conduct threat modeling, architecture reviews, and secure design assessments for new and existing services.
  • Own and improve vulnerability management processes, including identification, prioritization, and remediation tracking.
  • Implement and maintain security tooling such as SAST, DAST, dependency scanning, container scanning, and secrets detection.
  • Participate in incident response activities including detection, investigation, containment, and remediation.
  • Monitor and analyze logs, alerts, and security events to identify suspicious activity and emerging threats.
  • Contribute to detection engineering by tuning alerts, improving signal quality, and reducing noise.
  • Build security-as-code solutions to automate control enforcement, validation, and remediation.
  • Support secure AWS architecture and identity/access management practices across AWS, Okta/Auth0, and SaaS platforms.
  • Translate compliance requirements into practical technical controls and support audits, evidence collection, and continuous control monitoring.

Requirements

  • 6+ years of experience in application security, cloud security, or security engineering roles.
  • Strong hands-on experience securing cloud-native, SaaS-based environments.
  • AWS experience is required.
  • Solid understanding of application security principles and common vulnerabilities, including OWASP Top 10.
  • Experience with secure software development practices and CI/CD integration.
  • Understanding of cloud security architecture and IAM.
  • Experience with incident detection and response fundamentals.
  • Experience with security tools such as SIEM, SAST/DAST, EDR, vulnerability scanners, and cloud security platforms.
  • Ability to script and automate security workflows using Python, Bash, or similar languages.
  • Strong analytical skills and the ability to clearly communicate security risks and recommendations.
  • Experience in healthcare or other regulated industries is preferred.
  • Familiarity with Kubernetes, container security, and modern DevSecOps tooling is preferred.
  • Experience contributing to detection engineering or threat analysis efforts is preferred.
  • Relevant certifications such as AWS Security Specialty, CISSP, CCSP, or GIAC are preferred.

Benefits

  • Salary range of $140,000 to $175,000 per year.
  • Flexible, remote-friendly work environment.
  • Employee-driven programs and initiatives for personal and professional development.
  • Opportunity to work in a senior, high-impact role at a mission-driven healthcare company.
  • Hands-on work with modern cloud and application security challenges.
  • Be part of a talented, energized, diverse, and purpose-driven community.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GuidePoint Security

Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is seeking a security engineering professional to help implement and operationalize application security tooling and practices across modern software development environments.

United States Full-time Senior Application Security Engineer
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins
12 hours, 2 minutes ago
instacart.careers

Senior Product Security Engineer II

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineer to join its Security Engineering team and conduct offensive security work across product and internal tools to strengthen the company’s security posture.

Canada Full-time Senior Application Security Engineer
$145k-$152k
Penetration Testing
13 hours, 2 minutes ago
Workleap

DevSecOps Lead

Workleap 251-1K Internet Software & Services

Workleap is hiring a DevSecOps Lead to embed security into its AI-enabled SDLC, CI/CD pipelines, and Azure-based product development workflows across its Workleap and ShareGate platforms.

Canada Full-time Lead Application Security Engineer
$126k-$151k
Azure Bash C# CI/CD DevSecOps GitHub Actions .NET OAuth OpenID Connect Python SAML
3 days, 12 hours ago
Zscaler

Director, Product Management, Customer Security Outcomes

Zscaler 1K-5K Internet Software & Services

Zscaler is hiring a Director of Product Management for Customer Security Outcomes to lead the vision and strategy for its security operations services in a fully remote U.S. role.

United States Full-time Executive Application Security Engineer Product Manager
$200k-$285k
Generative AI Machine Learning
5 days, 12 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers