RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer

10 hours, 17 minutes ago
Anywhere
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS GraphQL gRPC Kotlin Kubernetes Penetration Testing Python
Apply Now
Brex

Brex

Brex is an AI-powered spend platform that offers integrated corporate cards, expenses, travel, and payments in over 100 countries. With a unified platform for corporate cards, expense management, reimbursements, travel, business accounts, and bill pay,...

Diversified Financial Services
1K-5K
Founded 2017
$1800M raised
View All Jobs 23

Description

  • Identify vulnerabilities across the Brex platform, demonstrate business impact, and communicate risk to drive prioritization.
  • Perform penetration testing and design reviews to find vulnerabilities and insecure designs.
  • Partner with engineering and product teams to design secure product features.
  • Build and maintain internal tools that automate security efforts and support secure development workflows.
  • Perform static and dynamic application security testing, including SAST and DAST.
  • Contribute technical leadership, learning sessions, and mentorship to strengthen security culture across the organization.
  • Collaborate closely with Security Operations, GRC, Product Security, Front End Platform, and IT Infrastructure teams.
  • Help secure emerging AI and agentic features by identifying attack vectors and partnering on trustworthy implementations.

Requirements

  • 5+ years of work experience in Application Security or a related role.
  • Ability to find vulnerabilities in complex systems and demonstrate business impact through custom attack chains.
  • Experience with secure development activities such as threat modeling, developer education, and incident response.
  • Knowledge of Python, scripting languages, and AI/agentic workflows to automate tasks and build tools.
  • Strong written and verbal communication skills and a collaborative mindset.
  • Bonus: proficiency with Kotlin, gRPC, GraphQL, and Kubernetes.
  • Bonus: previous experience as a software engineer.
  • Bonus: consultancy experience performing web application security reviews.
  • Bonus: experience securing distributed systems in AWS and cloud environments.
  • Bonus: experience pentesting and securing agentic features and systems.
  • Bonus: contributions to the technical community such as open source, public research, mentorship, blogging, CVEs, or presentations.
  • Bonus: experience submitting to bug bounty programs or responsible disclosure programs.

Benefits

  • Expected base salary range of $192,000 to $240,000.
  • Equity and other forms of compensation may be included in the total package.
  • Opportunity to work on AI-driven financial services and influence new security initiatives.
  • High-autonomy engineering environment with deep collaboration across teams.
  • Resources and support to grow your career in a diverse and inclusive culture.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Coinbase

Blockchain Security Engineer

Coinbase 1K-5K Capital Markets

Coinbase is hiring a Blockchain Security Engineer for its Decentralized Financial Security Team to help design and secure upcoming crypto products and features used by millions of customers.

United States Full-time Senior Application Security Engineer
$152k-$179k
Blockchain Databricks Generative AI Snowflake
8 hours, 2 minutes ago
Veeam Software

Application Security Engineer - Pentester

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring an Application Security Engineer (Offensive Testing) to lead penetration testing and DAST for Veeam Data Cloud products and help engineering teams remediate exploitable web and API security issues.

Czech Republic Full-time Senior Application Security Engineer Penetration Tester
Burp Suite CI/CD OAuth OpenID Connect Penetration Testing SAML
8 hours, 47 minutes ago
Quanata

Senior Application Security Engineer [Remote-US]

Quanata 201-500 information technology & services

Quanata is hiring a Senior Application Security Engineer to partner with web, backend, and data science teams to embed security across the software development lifecycle for its context-based insurance products.

United States Full-time Senior Application Security Engineer
$220k-$350k
AWS CI/CD Docker GraphQL JavaScript Kubernetes Microservices Node.js Penetration Testing REST API SonarQube TypeScript
10 hours, 17 minutes ago
LivePerson

AppSec Engineer I

LivePerson 1K-5K Internet Software & Services

LivePerson is hiring an Application Security specialist to test and strengthen the security of its cloud and on-premises applications and environments as part of the AppSec team.

Bulgaria Full-time Junior Application Security Engineer
Burp Suite GCP Java Node.js Penetration Testing Python
10 hours, 47 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers