RemoteLeaf Logo
Log in Sign up

Staff Application Security Engineer

2 days, 17 hours ago
Europe, Middle East, Africa, United Kingdom, Italy, Netherlands, Poland
Full-time
Lead
Application Security Engineer
Cybersecurity
DevSecOps Penetration Testing Python
Apply Now
Ivanti

Ivanti

Ivanti provides automated solutions that discover, repair, and secure devices across various locations, enabling employees to work efficiently and securely from anywhere.

Internet Software & Services
1K-5K
Founded 1985
$26M raised
View All Jobs 5

Description

  • Manage integration of security best practices across all phases of the software development lifecycle to protect Ivanti’s products, services, and IT assets.
  • Build innovative, scalable security tools, processes, and solutions to proactively detect, remediate, and mitigate vulnerabilities across large and complex codebases.
  • Design secure architectures, perform comprehensive threat modeling, and lead penetration testing and code reviews for web and mobile applications.
  • Partner with development, operations, and architecture teams to embed security into DevOps practices and CI/CD pipelines.
  • Lead security education initiatives by delivering training and documentation and driving vulnerability remediation with stakeholders of varying technical backgrounds.
  • Collaborate with global product and engineering teams, business leaders, and third-party security vendors to interpret vulnerability reports and coordinate disclosure programs.
  • Advise stakeholders on prioritizing vulnerabilities, implementing secure coding standards, applying cryptographic techniques, and adopting security protocols and compliance practices.
  • Contribute to responsible disclosure, bug bounty, and vulnerability management programs, and help secure cloud and SaaS environments at scale.

Requirements

  • Over 8 years of experience in web application security.
  • Deep technical knowledge of common and advanced security vulnerabilities, exploitation techniques, and practical remediation strategies.
  • Proven expertise in applied cryptography, threat modeling, and vulnerability assessment including CVSS scoring and penetration testing.
  • Experience with secure software development practices across SSDLC and CI/CD pipelines.
  • Experience implementing and maintaining security tools and processes for large-scale codebases (examples: SAST, SCA, DAST, container scanning).
  • Strong programming skills, preferably in Python.
  • Ability to explain complex security topics clearly to both technical and non-technical stakeholders.
  • Experience contributing to responsible disclosure, bug bounty, and vulnerability management programs.
  • Experience securing cloud and SaaS environments at scale.

Benefits

  • Remote-friendly, flexible schedules.
  • Competitive compensation and total rewards, including health, wellness, and financial plans.
  • Opportunity to collaborate with global, diverse teams across 23+ countries.
  • Access to learning and development resources and best-in-class training programs.
  • Inclusive culture with commitment to diversity and accommodations available during the hiring process.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Owner.com

Application Security Engineer

Owner.com 11-50 Internet Software & Services

Owner.com is hiring a remote Application Security Engineer to secure its restaurant-focused AI growth platform by testing, remediating, and preventing application security issues across the product line.

United States Canada Mexico Colombia Full-time Senior Application Security Engineer
$190k-$220k
Penetration Testing
6 hours, 7 minutes ago
Canary

Senior Application Security Engineer

Canary 11-50 Internet Software & Services

Canary Technologies is hiring a Senior Application Security Engineer to embed security into its fully remote engineering organization and help secure and scale its hospitality software platform.

United States Full-time Senior Application Security Engineer
AWS Burp Suite CI/CD Encryption GitHub Actions GitOps Go Helm JavaScript Kubernetes Penetration Testing Python Secrets Management SonarQube Terraform WAF
7 hours, 37 minutes ago
Pennylane

Senior Application Security Engineer

Pennylane 251-1K Diversified Financial Services

Pennylane is hiring a Senior Application Security Engineer to safeguard its web application, cloud infrastructure, and development practices while supporting compliance and security awareness across a fast-growing remote fintech team.

United Kingdom Croatia France Germany Greece Ireland Italy Poland Portugal Romania Spain Full-time Senior Application Security Engineer
AWS CI/CD JavaScript Kubernetes Penetration Testing Python React Ruby Ruby on Rails
8 hours, 22 minutes ago
Spotify

Security Engineer - Product Security

Spotify Media

Spotify is hiring a Security Engineer for its Product Security team in London or Stockholm to help secure engineering initiatives, application development, and AI-driven systems at global scale.

United Kingdom Sweden Full-time Senior Application Security Engineer Security Engineer
Agile C++ Encryption Generative AI Java Machine Learning Python Scala TypeScript
8 hours, 52 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers