Role Overview
This position is responsible for advancing application security within a distributed development environment. As a Senior Application Security Engineer, you will lead the deployment, configuration, and ongoing management of security testing technologies across the software development lifecycle. The role operates entirely remotely within the U.S. and demands strong technical fluency in modern development practices, cloud infrastructure, and automated pipelines.
Key Responsibilities
- Deploy, configure, and maintain a range of Application Security Testing (AST) tools—including static, dynamic, interactive, and software composition analysis—to detect vulnerabilities in code and third-party dependencies.
- Operate and optimize Application Security Posture Management (ASPM) platforms to aggregate, prioritize, and reduce redundancy in findings from multiple security tools.
- Provide direct technical support to development teams by analyzing security alerts, resolving false positives, and guiding remediation efforts.
- Integrate security scanning tools into CI/CD workflows to enable automated, continuous security validation.
- Generate clear, actionable reports on security findings, remediation progress, and risk trends for technical and management audiences.
- Assess and triage security risks across diverse application environments and business units, applying scalable methods to vulnerability management.
- Advise engineering teams on secure coding practices and communicate the impact of security issues to both technical staff and leadership.
- Demonstrate expertise in cloud platforms, container technologies, and secure software design principles.
Technology Environment
The role engages with a broad set of tools and platforms, including SAST, DAST, IAST, SCA, ASPM solutions, CI/CD systems, container orchestration, and cloud-native infrastructure.
