Associate Application Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Assist in conducting secure design and implementation evaluations for both new and existing features within web applications, APIs, and backend services.

• Oversee, categorize, and aid in the remediation of findings from security tools.

• Familiarize yourself with our security technologies and operational processes.

• Collaborate with feature teams to assess exploitability, prioritize fixes, and monitor the resolution of vulnerabilities in accordance with internal service level agreements (SLAs).

• Establish an enterprise security control and configure it for sustained observability.

• Contribute to the application of essential application security processes.

• Assist in defining the technical direction for secure, AI-native, mission-critical services that manage sensitive data.

• Support the collection of evidence for compliance audits.

• Develop strong collaborative relationships with product, support, infrastructure, and IT teams to identify and address vulnerabilities effectively and promptly.

• The security enhancements you implement will significantly mitigate risk.

• Independently review and prioritize security alerts.

⛳️ Requirements

• Proven experience in securing web applications and APIs, with a solid understanding of common vulnerabilities (e.g., OWASP Top 10) and practical mitigation strategies.

• Hands-on experience with application security tools (e.g., SAST, SCA, DAST, IaC/container scanning) and/or observability for security-relevant signals.

• Ability to articulate complex security and technical issues clearly to both technical and non-technical stakeholders.

• Familiarity with secure Software Development Life Cycle (SDLC) practices such as threat modeling, security-oriented design reviews, and vulnerability management.

• Proven track record of delivering high-quality, pragmatic security results in collaboration with product and engineering teams.

• Passion and interest in technology and the security of systems.

🏝️ Benefits

• Health insurance

• Flexible work hours

• Remote work options

• Paid time off

• Professional development opportunities