Application Security Engineer / Senior AppSec Engineer

Remote Full-time
Job Information

Date Opened

03/27/2026

Job Type

Full time

Remote Job

Industry

Technology

This is a remote position.

We are seeking a skilled Application Security Engineer to drive secure development practices and manage end-to-end application security testing, vulnerability management, and DevSecOps integration. The role requires hands-on experience in SAST/DAST tools, vulnerability scanning, CI/CD security integration, and manual security testing across web and API-based applications.

Key Responsibilities
β€’ Perform application security assessments for web and API applications
β€’ Integrate security into Secure SDLC (SSDLC) and DevSecOps pipelines
β€’ Conduct threat modeling and security design reviews
β€’ Execute vulnerability scans using tools like Tenable
β€’ Analyze results from SAST, DAST, and manual testing
β€’ Document findings including severity, exploitability, reproduction steps, and remediation guidance
β€’ Integrate and maintain SAST/DAST tools within CI/CD pipelines
β€’ Perform vulnerability validation, PoC development, and false-positive analysis
β€’ Apply risk-based prioritization and track remediation to closure
β€’ Provide L2/L3 support, incident investigation, and root cause analysis (RCA)
β€’ Maintain AppSec documentation, audit evidence, and compliance reports
β€’ Track and report vulnerability metrics, scan coverage, and remediation status

Required Skills
β€’ Strong experience in Application Security (Web & API Security Testing)
β€’ Expertise in OWASP Top 10 vulnerabilities and remediation techniques
β€’ Hands-on experience with SAST tools (Checkmarx, Veracode, SonarQube)
β€’ Hands-on experience with DAST tools (Burp Suite, OWASP ZAP)
β€’ Experience with vulnerability scanning tools (Tenable preferred)
β€’ Knowledge of Secure SDLC and DevSecOps practices
β€’ Strong understanding of HTTP, REST APIs, authentication (OAuth, JWT)
β€’ Proficiency in Python / Bash / PowerShell scripting
β€’ Experience with CI/CD tools and pipeline security integration
β€’ Familiarity with JIRA / ServiceNow or similar tracking tools

Preferred Qualifications
β€’ Experience in manual penetration testing and exploit development
β€’ Exposure to red team techniques and offensive security testing
β€’ Experience in cloud environments (AWS / Azure / GCP)
β€’ Knowledge of container and microservices security (Docker, Kubernetes)
β€’ Experience supporting SOC 2, ISO 27001, or similar audits

Certifications (Preferred)
β€’ OSCP / OSWE / GWAPT / eWPT
β€’ CEH (Certified Ethical Hacker)
β€’ CISSP / CSSLP
β€’ AWS Security Specialty / Azure Security Engineer
β€’ Certified Kubernetes Security Specialist (CKS)

Soft Skills
β€’ Strong analytical and problem-solving skills
β€’ Excellent communication and collaboration with engineering teams
β€’ Ability to work in SLA-driven environments
β€’ Detail-oriented with strong documentation skills

Apply tot his job

Apply To this Job
Apply Now β†’

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Manager, Regional Physical Security

Remote

Senior Engineer, Cyber Red Team

Remote

Experienced Remote Part-time Data Entry Clerk – Healthcare Industry Ambulatory Care Delivery Network Support

Remote

Licensed Therapist (Remote, Multiple States)

Remote

Call Center/ Patient Service Representative

Remote

Remote Customer Service Agent – Global Support Specialist for E‑Commerce & SaaS Platforms

Remote

Part-Time Remote Customer Experience Specialist – College Student-Friendly Flexible Schedule Opportunity

Remote

Clinical Trainer Β– Seattle in Seattle, WA

Remote

Experienced Customer Service Representative – Amazon Chat Support – careerzynith

Remote

Experienced Customer Service Representative – Remote Live Chat and Email Support Specialist with Comprehensive Training and Growth Opportunities

Remote
← Back