ONE
Helping people save and grow their money.
Application Security Engineer
Location
United States
Posted
77 days ago
Salary
$170K - $210K / year
Bachelor Degree8 yrs expEnglishAWSDockerEC2KubernetesPython
Job Description
• Architect and implement secure AWS configurations (IAM roles/policies, encryption keys, VPC segmentation)
• Embed security into CI/CD pipelines and repos using policy-as-code tools (pre-commit hooks, SAST/SCA, IDE tool integrations)
• Secure container and orchestration environments (EKS, Kubernetes, Docker) per best practices
• Conduct threat modeling sessions and risk‑driven design reviews early in development
• Perform secure code reviews and static/dynamic analysis; oversee remediation with dev teams
• Automate repetitive security tasks—vulnerability triage, code scanning, tool orchestration
• Build and extend in-house AppSec automation frameworks or pentest tooling
• Partner with security architecture and detection teams (SIEM tuning, logging, telemetry alignment)
• Develop and enforce AppSec standards and patterns across product teams; iterate through feedback loops
• Support regulatory or compliance assessments (PCI, CCPA, GLBA) as needed
Job Requirements
- 8–12 years’ experience in application security engineering, DevSecOps, or security platform engineering
- Deep familiarity with CVSS, MITRE ATT&CK frameworks, OWASP Top 10 and CWE taxonomy
- Proven experience with AWS core services: IAM, KMS, VPC, EC2, RDS, EKS
- Hands-on expertise in securing IaC and CI/CD pipelines; strong knowledge of policy-as-code tooling
- Container security experience: Docker, Kubernetes, EKS-related threat surfaces
- Solid threat modeling and secure code review skills; SAST/SCA tool proficiency
- Experience scripting automation (e.g. Python, Bash, PowerShell) to streamline AppSec tasks
- Capability to lead in-house AppSec frameworks or tooling development
- Strong communicator, able to translate technical findings to non-technical stakeholders
- Track record of defining and institutionalizing security architecture patterns
Benefits
- Competitive base salary, stock options, and health benefits from Day 1
- 401(k) plan with company match
- Remote-friendly (US), flexible time off (FTO), and opportunities for growth
- A high-growth, mission-driven, inclusive culture where your work has real impact
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
Application Engineer81 days ago
Full TimeRemoteTeam 201-500Since 1969H1B No Sponsor
Senior Manager leading application engineering and development at ISACA
AzureCloudJavaScriptNext.jsReactSitecoreSQL.NET
Manager, Enterprise Application Engineering
OppFiTech-enabled mission-driven specialty finance platform broadening the reach of community banks to extend credit access
Application Engineer85 days ago
Full TimeRemoteTeam 501-1,000Since 2013H1B Sponsor
Manager leading Enterprise Application Engineering for OppFi's technology team
Python
Application Engineer87 days ago
Full TimeRemoteTeam 501-1,000Since 1998H1B Sponsor
Staff Software Engineer in Mozilla's Workplace technology team architecting scalable systems and automation
JavaJavaScriptPythonTypeScriptGo
United States
Application Engineer87 days ago
Full TimeRemoteTeam 10,001+Since 1961H1B Sponsor
Field Application Engineer supporting Broadcom’s VMware Cloud Foundation Advanced Services
CloudVMware
North Carolina + 4 moreAll locations: North Carolina, Maryland, Pennsylvania, Tennessee, Virginia
$106.9K - $171K / year
