RemoteLeaf Logo
Log in Sign up

Sr. Application Security Engineer

11 hours, 15 minutes ago
United States
Full-time
Lead
Application Security Engineer
Cybersecurity
AWS CI/CD Docker Go JWT Kubernetes OAuth OWASP Python SAML SIEM WAF
Apply Now
TrueML

TrueML

TrueML develops innovative financial technology solutions that enhance customer experience and aim to improve the financial health of consumers by addressing their unique needs and preferences.

Internet Software & Services
51-250
Founded 2013
View All Jobs 9

Description

  • Integrate security into the software development lifecycle with development and DevOps teams.
  • Identify, assess, and mitigate vulnerabilities in applications, infrastructure, and cloud environments.
  • Implement and maintain AWS security controls, including IAM policies, security groups, VPC configurations, and monitoring.
  • Embed security practices into CI/CD pipelines, secure code reviews, and infrastructure-as-code workflows.
  • Conduct threat modeling and risk assessments to define mitigation strategies.
  • Assist in developing and executing incident response plans and security incident handling.
  • Ensure systems and applications align with standards and best practices such as OWASP, NIST, and ISO 27001.
  • Provide security training and guidance to engineering teams on secure coding and infrastructure management.
  • Continuously monitor, evaluate, and improve security tools, processes, and practices.

Requirements

  • Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
  • 8+ years of experience in application security or a related role.
  • Strong experience with AWS security services and best practices.
  • Experience with DevOps tools and practices, including CI/CD pipelines, containerization, and infrastructure as code.
  • Proficiency in at least one programming language such as Python or Go.
  • Strong understanding of web application security and secure coding practices, including OWASP Top Ten.
  • Familiarity with security tools and technologies such as SAST, DAST, SIEM, and WAFs.
  • Ability to collaborate effectively with engineers, developers, and other stakeholders.
  • AWS Certified Security – Specialty or a similar certification.
  • Experience with container security tools and platforms such as Docker and Kubernetes.
  • Familiarity with modern authentication and authorization protocols such as OAuth, SAML, and JWT.
  • Knowledge of secure coding frameworks and libraries.

Benefits

  • Flexible vacation.
  • Medical, dental, and vision insurance.
  • Traditional and Roth retirement savings options.
  • Company-paid disability and life insurance.
  • Flexible Spending Account and Limited FSA options.
  • Family-friendly parental leave, volunteer time off, and voting time off.
  • On-demand wellness platform access for you and 5 friends and family members.
  • PerkSpot discount program with access to 900+ merchants nationwide.
  • Remote-first work environment with flexible scheduling and occasional travel as needed.
  • Base salary range of $125,000 to $140,000 per year for U.S.-based hires.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Crypto.com

Application Support Engineer — Blockchain Security & AI Automation

Crypto.com 1K-5K Capital Markets

Crypto.com is hiring an Application Support Engineer in its Blockchain Security team to keep production blockchain applications stable while improving support operations through AI-driven automation.

United Kingdom Full-time Mid Level Application Security Engineer
Blockchain Encryption Go LLM Node.js Python REST API Rust Solana
39 minutes ago
SpaceX

Product Security Engineer (Starlink)

SpaceX 10K-50K Aerospace & Defense

SpaceX is hiring a Product Security Engineer for Starlink to design and strengthen security across the company’s satellite internet systems, from software and infrastructure to factory and network processes.

United States Full-time Mid Level Application Security Engineer
$130k-$180k
C C++ Go Network Security Python TCP/IP
6 hours, 29 minutes ago
GuidePoint Security

Senior Application Security Engineer - Mid-Atlantic region (Remote in VA, MD, PA, NC, DE, NJ, or DC)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Security Engineering professional to implement and operationalize application security tooling and practices across software development and CI/CD environments for a broad range of customer-facing security engagements.

United States Full-time Senior Application Security Engineer
Azure Burp Suite CI/CD CircleCI GitHub Actions Jenkins
14 hours, 27 minutes ago
Tines

Senior Product Security Engineer

Tines 51-250 Construction & Engineering

Tines is hiring a Senior Product Security Engineer in a remote U.S. role to lead product security efforts and scale security controls across an AI-forward engineering environment as the company’s product portfolio grows.

United States Full-time Senior Application Security Engineer
$218k-$235k
AWS CI/CD DevSecOps Docker Kubernetes Ruby Rust TypeScript
2 days, 11 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers