RemoteLeaf Logo
Log in Sign up

Senior Application Security Engineer - Southeast region (Remote)

3 hours, 27 minutes ago
United States
Full-time
Senior
Application Security Engineer
DevOps and Infrastructure
AWS Azure CI/CD DevSecOps GCP Kubernetes Secrets Management
Apply Now
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011
View All Jobs 45

Description

  • Lead application security program assessments to identify gaps and prioritize remediation based on risk, resources, and organizational readiness.
  • Design security workflows, processes, tooling integrations, and developer-friendly practices that engineering teams can adopt.
  • Implement and configure SAST, SCA, DAST, and API security tools when hands-on support is needed.
  • Configure CI/CD security gates, build threat models, and conduct architecture reviews.
  • Help clients address tool sprawl, low adoption, competing priorities, technical debt, and cross-functional alignment challenges.
  • Deliver clear assessments, actionable roadmaps, implementation guides, and executive communications.
  • Serve as a strategic advisor and hands-on partner across client engagements.
  • Translate technical findings into business risk for executives and explain security requirements to developers.

Requirements

  • 5+ years of experience in application security, with experience building, scaling, or leading an AppSec program.
  • Experience implementing, operationalizing, and troubleshooting AppSec tools including SAST, DAST, SCA, API security, and secrets management.
  • Ability to operate at both the strategic level and the tactical level, including program design, roadmaps, risk prioritization, implementation, tool configuration, and code review.
  • Strong working knowledge of Secure Development Lifecycles.
  • Experience triaging and remediating technical vulnerabilities identified by web application scanning tools.
  • Excellent written and verbal communication skills.
  • Prior consulting or client-facing experience, including scoping engagements, managing expectations, and delivering clean work, is preferred.
  • Operational DevSecOps experience is preferred.
  • Security certifications such as CSSLP, OSCP, GWAPT, or similar are preferred.
  • Experience with cloud-native security across AWS, Azure, or GCP, as well as container and Kubernetes security, is preferred.

Benefits

  • Remote-first work environment for primarily U.S.-based employees, with some travel or on-site work required for certain roles.
  • Medical insurance options with GuidePoint covering 90% of employee premiums on the Zero Deductible PPO plan or 100% on the High Deductible HSA plan.
  • Family medical premium support, including 70% coverage on the PPO plan or 75% on the HSA plan.
  • Dental insurance with GuidePoint paying 100% of employee premiums and 75% of family plan premiums.
  • 12 corporate holidays plus a Flexible Time Off program.
  • Mobile phone and home internet allowance.
  • Eligibility for the retirement plan after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Nebius

Application Security Engineer

Nebius 51-250 Internet Software & Services

Nebius is hiring an Application Security Engineer to help secure its AI cloud platform by identifying vulnerabilities, improving secure development practices, and supporting application security across the software lifecycle.

United Kingdom Europe Netherlands Czech Republic Germany Full-time Mid Level Application Security Engineer
$81k-$259k
Burp Suite Cybersecurity Go Java JavaScript Linux OpenID Connect Penetration Testing Python SAML
2 hours, 57 minutes ago
Spotify

Security Engineer- Product Security

Spotify Media

Spotify is hiring a Security Engineer for Product Security to secure its platform, infrastructure, and engineering initiatives for hundreds of millions of users across London or Stockholm.

United Kingdom Sweden Full-time Mid Level Application Security Engineer
Agile C++ CI/CD Encryption Generative AI Java Python Scala TypeScript
3 hours, 42 minutes ago
MLabs

Product Security Engineer

MLabs 11-50 Internet Software & Services

MLabs is hiring a Product Security Engineer to secure an enterprise-grade open-source proof-of-stake blockchain platform as it scales across protocol upgrades, EVM-compatible services, and cross-chain infrastructure.

Singapore United Kingdom Switzerland Germany Hong Kong Full-time Senior Application Security Engineer
$75k-$85k
Blockchain CI/CD Encryption gRPC Java Rust
3 hours, 57 minutes ago
Inovalon

Application Security Engineer

Inovalon 1K-5K IT Services

Inovalon is hiring a Staff Software Engineer focused on application security to embed secure practices across the design, development, and operation of cloud-native SaaS healthcare platforms.

United States India Full-time Lead Application Security Engineer
Agile DevSecOps Encryption GCP HIPAA Penetration Testing
1 day, 6 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers