RemoteLeaf Logo
Log in Sign up

Staff Application Security Engineer

2 days, 16 hours ago
India
Full-time
Lead
Application Security Engineer
Cybersecurity
CI/CD DevSecOps Penetration Testing Python
Apply Now
Ivanti

Ivanti

Ivanti provides automated solutions that discover, repair, and secure devices across various locations, enabling employees to work efficiently and securely from anywhere.

Internet Software & Services
1K-5K
Founded 1985
$26M raised
View All Jobs 5

Description

  • Integrate security best practices throughout all phases of the software development lifecycle to protect Ivanti’s products, services, and IT assets.
  • Build and maintain scalable security tools, processes, and solutions to proactively detect, remediate, and mitigate vulnerabilities across large and complex codebases.
  • Design secure architectures, perform comprehensive threat modeling, and lead penetration testing and code reviews for web and mobile applications.
  • Partner with development, operations, and architecture teams to embed security into DevOps/CI-CD practices and drive continuous security awareness.
  • Lead security education initiatives by delivering training, documentation, and clear guidance to cross-functional teams and stakeholders.
  • Drive vulnerability remediation efforts, advise on prioritization, and coordinate with stakeholders to ensure timely fixes.
  • Collaborate with global product and engineering teams, business leaders, and third-party vendors to interpret vulnerability reports, run disclosure programs, and coordinate security responses.

Requirements

  • Over 8 years of experience in web application security with deep knowledge of common and advanced vulnerabilities, exploitation techniques, and remediation strategies.
  • Proven expertise in applied cryptography, threat modeling, vulnerability assessment (including CVSS scoring), and penetration testing.
  • Experience implementing and maintaining security tools and processes at scale, such as SAST, SCA, DAST, and container scanning.
  • Strong programming ability (preferably in Python) with the ability to explain complex security topics to technical and non-technical stakeholders.
  • Practical experience with secure software development practices across SSDLC and CI/CD pipelines.
  • Demonstrated experience contributing to responsible disclosure, bug bounty, and vulnerability management programs.
  • Experience securing cloud and SaaS environments at scale and working cross-functionally with global teams and third-party vendors.

Benefits

  • Remote-friendly work and flexible schedules.
  • Competitive compensation and total rewards, including health, wellness, and financial plans for you and your family.
  • Equity participation and a culture that values belonging and diverse perspectives.
  • Global, diverse teams with collaboration across 23+ countries.
  • Access to learning and development resources and best-in-class training programs.
  • Inclusive hiring practices and accommodations during the recruiting process (contact available for adjustments).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Owner.com

Application Security Engineer

Owner.com 11-50 Internet Software & Services

Owner.com is hiring a remote Application Security Engineer to secure its restaurant-focused AI growth platform by testing, remediating, and preventing application security issues across the product line.

United States Canada Mexico Colombia Full-time Senior Application Security Engineer
$190k-$220k
Penetration Testing
6 hours, 6 minutes ago
Canary

Senior Application Security Engineer

Canary 11-50 Internet Software & Services

Canary Technologies is hiring a Senior Application Security Engineer to embed security into its fully remote engineering organization and help secure and scale its hospitality software platform.

United States Full-time Senior Application Security Engineer
AWS Burp Suite CI/CD Encryption GitHub Actions GitOps Go Helm JavaScript Kubernetes Penetration Testing Python Secrets Management SonarQube Terraform WAF
7 hours, 36 minutes ago
Pennylane

Senior Application Security Engineer

Pennylane 251-1K Diversified Financial Services

Pennylane is hiring a Senior Application Security Engineer to safeguard its web application, cloud infrastructure, and development practices while supporting compliance and security awareness across a fast-growing remote fintech team.

United Kingdom Croatia France Germany Greece Ireland Italy Poland Portugal Romania Spain Full-time Senior Application Security Engineer
AWS CI/CD JavaScript Kubernetes Penetration Testing Python React Ruby Ruby on Rails
8 hours, 21 minutes ago
Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
8 hours, 51 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers