RemoteLeaf Logo
Log in Sign up

Application Security Engineer

1 week, 4 days ago
United States
Full-time
Senior
Application Security Engineer
Cybersecurity
AWS Azure CI/CD Docker GCP Go JavaScript Kubernetes Microservices Penetration Testing Python Scala TypeScript
Apply Now
Rubrik

Rubrik

Rubrik provides cutting-edge data security and protection solutions, including Zero Trust Data Protection and ransomware recovery, to ensure data readiness and business resilience.

IT Services
1K-5K
Founded 2014
$553M raised
View All Jobs 40

Description

  • Integrate security controls and practices into Rubrik’s secure SDLC and embed security into every phase of development.
  • Perform security assessments of applications using both automated and manual testing techniques.
  • Analyze identified vulnerabilities and deliver high-fidelity findings to Engineering teams.
  • Identify and help implement shift-left strategies to prevent vulnerabilities earlier in the SDLC.
  • Collect, manage, and report Application Security metrics to track progress and trends.
  • Analyze and harden existing applications, automation, and deployment processes.
  • Participate in security design reviews and threat modeling for proposed products and feature releases.
  • Work with development, operations, governance, and other stakeholders to document security guidance, processes, and standards.

Requirements

  • Bachelor’s degree required; BS or MS in Computer Science, Information Technology, or a related field.
  • 5+ years of experience in Application Security.
  • Experience with SDLC activities including threat modeling, secure code review, vulnerability management, and penetration testing.
  • Knowledge of regulatory guidelines and standards such as FedRAMP, SOC2, and ISO 27001.
  • Broad knowledge of web, application, and cloud attack vectors and exploits.
  • Comprehension of multiple programming languages, including Python, Go, Scala, C/C++, and JavaScript/TypeScript.
  • Working experience with CI/CD pipelines, containerization tools such as Kubernetes and Docker, and microservices.
  • Working knowledge of at least one major public cloud provider such as AWS, GCP, or Azure.
  • Understanding of application security maturity model frameworks and how to apply them.
  • Foundational knowledge of deploying and securing SaaS applications and cloud environments.
  • Strong teamwork, prioritization, conflict resolution, independence, and ownership mindset.
  • Excellent critical thinking, problem-solving, written, and verbal communication skills.

Benefits

  • Eligible for bonus potential, equity, and benefits.
  • US base salary range of $150,200 to $225,400 for SF Bay Area, DC Metro, NYC, and Seattle.
  • US2 base salary range of $135,200 to $202,800 for all other US offices/remote.
  • Reasonable accommodation support for qualified individuals with disabilities.
  • Equal opportunity employment and inclusive workplace practices.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Infatica

Application Security Consultant

Infatica 1-10 Internet Software & Services

Infatica.io is seeking an Application Security Consultant to assess and improve the security of its proxy services by analyzing product components, build and distribution processes, and external detection responses.

Spain Full-time Senior Application Security Engineer
Linux Machine Learning
11 hours, 40 minutes ago
Thumbtack

Staff Application Security Engineer

Thumbtack 1K-5K Construction & Engineering

Thumbtack is hiring a Security Engineer to shape application security for its cloud-based, AI-enabled home services platform as the company scales.

Remote
Full-time Lead Application Security Engineer
$221k-$286k
AWS CI/CD GCP Secrets Management
12 hours, 37 minutes ago
Prolific

Application Security Lead

Prolific 51-250 Professional Services

Prolific is hiring an Application Security Lead to own application security strategy and embed secure development practices across its engineering organization while protecting a platform that handles sensitive data at scale.

United Kingdom Full-time Lead Application Security Engineer
Burp Suite CI/CD Django GCP Kubernetes Microservices MongoDB Python Terraform Vue.js
23 hours, 49 minutes ago
Trustly

SecOps Engineer (AppSec)

Trustly 251-1K Diversified Financial Services

Trustly is seeking a remote SecOps Engineer (AppSec) to help secure its global open banking payments platform by strengthening application, cloud, and infrastructure security controls.

Brazil Full-time Mid Level Application Security Engineer
Cybersecurity GitHub Java Kubernetes Node.js OWASP Penetration Testing Python Shell Scripting
1 day ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers