RemoteLeaf Logo
Log in Sign up

Application Security Engineer

1 month ago
United States
Full-time
Mid Level
Application Security Engineer
Cybersecurity
Microservices
Apply Now
ClearCapital.com,

ClearCapital.com,

Clear Capital is a real estate valuation technology company that provides valuation services, data and analytics tools, and a full suite of appraisal services. They offer intelligent valuation solutions for properties nationwide, serving the mortgage a...

Real Estate
1-10
View All Jobs 6

Description

  • Perform application security testing on web applications, mobile applications, microservices, infrastructure code, and open source code.
  • Collaborate with internal teams to define the scope, methodology, and coverage of security testing activities.
  • Plan and execute application security testing throughout all phases of the software development life cycle.
  • Identify vulnerabilities in application code and weaknesses in secure coding practices.
  • Create reports that document security issues, assess risk levels, and provide actionable remediation recommendations.
  • Assess discovered vulnerabilities and recommend solutions to reduce risk and mitigate security impacts.
  • Focus on automation to improve the efficiency of both testing and remediation efforts.
  • Communicate findings, risks, conclusions, and recommendations to technical and non-technical stakeholders.
  • Educate development engineers on secure coding practices and contribute to application security awareness.
  • Consider and communicate the business and operational impact of unresolved security vulnerabilities.

Requirements

  • 3-5 years of proven experience in application security testing.
  • Experience with Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), Open Source Security (OSS) testing, Software Composition Analysis (SCA), and Infrastructure as Code (IaC).
  • Bachelor’s degree in a technically related field such as Computer Science, Information Technology, or Software Engineering, or equivalent work experience.
  • Relevant certifications such as EC-Council Certified Application Security Engineer (C|ASE), (ISC)2 Certified Secure Software Lifecycle Professional (CSSLP), or GIAC Web Application Penetration Tester (GWAPT).
  • Experience testing web applications for OWASP Top Ten security vulnerabilities.
  • Thorough understanding of the Software Development Life Cycle (SDLC).
  • Experience promoting and implementing secure coding practices and training development teams on secure development practices.
  • Strong verbal and written communication skills with the ability to explain technical concepts to technical and non-technical audiences.
  • Ability to plan and execute tests with strong attention to detail, prioritize tasks, manage time effectively, and meet deadlines.
  • Strong analytical and problem-solving skills, ethical integrity, collaboration ability, and a commitment to continuous technical learning.

Benefits

  • Base salary range of $80,000 to $110,000 annually, depending on location, experience, and qualifications.
  • Company profit-sharing bonus program, communication stipends, and referral bonuses.
  • Comprehensive medical, dental, and company-paid vision insurance.
  • 401(k) retirement plan with employer match.
  • Paid time off (PTO) and paid holidays.
  • Employee assistance and wellness programs, plus company-paid short-term disability coverage.
  • Company contributions to health savings funds with participation in the high deductible health plan.
  • Free access to Galileo for virtual primary care and Rula for virtual mental health resources.
  • Career and skill development resources to support professional growth.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Smartsheet

Senior Security Engineer II, Application Security (Remote Eligible)

Smartsheet 1K-5K Internet Software & Services

Smartsheet is hiring a Senior Security Engineer II to strengthen application security for its global SaaS platform by securing AI-integrated features, expanding security automation, and leading high-impact security reviews.

United States Full-time Senior Application Security Engineer
$175k-$245k
AWS Azure CI/CD GCP GitLab Go Java JavaScript LLM Penetration Testing Python Ruby TypeScript
4 hours, 59 minutes ago
e.l.f. Beauty

Senior Application Security Engineer

e.l.f. Beauty 251-1K Consumer Goods

Senior Application Security Engineer role at a remote marketing and digital commerce company focused on securing applications across the software development lifecycle.

India Full-time Lead Application Security Engineer
Agile AWS Azure CI/CD Cybersecurity DevSecOps GCP HTML JavaScript Penetration Testing Python REST API
2 days, 17 hours ago
Binance

Binance Accelerator Program - Blockchain / Smart Contract Security

Binance 5K-10K Capital Markets

Binance is seeking a Binance Accelerator Program participant to support smart contract and blockchain security work, including audits, vulnerability analysis, and risk detection across Web3 systems.

Asia Hong Kong Taiwan Internship Entry Level Application Security Engineer
Blockchain Git Python VS Code
3 days, 21 hours ago
Evolve Security Academy

Senior Application Security Tester & AI Red Team Subject Matter Expert

Evolve Security Academy 11-50 Internet Software & Services

Evolve Security is seeking a senior offensive security specialist to lead complex web, API, and AI red team engagements while defining the firm’s testing methodology for LLM-enabled and agentic systems.

United States Full-time Senior AI (Artificial Intelligence) Application Security Engineer
Bash GraphQL JavaScript JWT Metasploit Nmap OpenID Connect Penetration Testing Postman PowerShell Python REST API SAML SPA TypeScript
5 days, 7 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers