Principal Application Security Engineer at Jobgether – United States
Jobgether
United States, United States
Posted on
New
New job! Apply early to increase your chances of getting hired.
About This Position
Principal Application Security Engineer
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Principal Application Security Engineer in United States.This role offers a strategic opportunity to shape and advance the security posture of a high-growth, digital-first platform. The Principal Application Security Engineer will partner closely with engineering and product teams to design, implement, and maintain secure applications and cloud-native infrastructure. You will lead threat modeling, vulnerability management, and security audits, while influencing security practices across the organization. This position balances hands-on technical execution with strategic oversight, enabling scalable and resilient security controls. You will work in a collaborative, remote-friendly environment with regular on-site sessions, ensuring that security is embedded across the software development lifecycle. Ideal candidates thrive in dynamic, high-impact settings where innovation and security go hand in hand.Accountabilities:
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
#LI-CL1
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Principal Application Security Engineer in United States.This role offers a strategic opportunity to shape and advance the security posture of a high-growth, digital-first platform. The Principal Application Security Engineer will partner closely with engineering and product teams to design, implement, and maintain secure applications and cloud-native infrastructure. You will lead threat modeling, vulnerability management, and security audits, while influencing security practices across the organization. This position balances hands-on technical execution with strategic oversight, enabling scalable and resilient security controls. You will work in a collaborative, remote-friendly environment with regular on-site sessions, ensuring that security is embedded across the software development lifecycle. Ideal candidates thrive in dynamic, high-impact settings where innovation and security go hand in hand.Accountabilities:
- Partner with engineering and product teams to securely design and implement new applications and features.
- Develop, maintain, and review threat models for high-risk functionality and cloud-native infrastructure.
- Conduct vulnerability scanning, penetration testing, and remediation strategies for identified security issues.
- Define and implement company-wide security controls and solutions across applications and infrastructure.
- Advocate for security best practices across the organization, influencing development teams on secure coding standards and practices.
- Identify and manage the internal and external attack surface, supporting proactive risk mitigation.
- Operate as a core member of the engineering team, collaborating on secure software development processes from ideation to deployment.
- 3+ years of experience in application security, security engineering, or a related role.
- Bachelors degree in IT, Computer Science, or equivalent knowledge; advanced degrees preferred.
- Hands-on experience with Java, Python, or Ruby development.
- Strong understanding of authentication and authorization protocols (TLS, SAML, OAuth, etc.).
- Familiarity with SAST/DAST tools, vulnerability scanners, and security-focused code reviews.
- Knowledge of full stack development, SDLC, CI/CD pipelines, and common networking protocols.
- Self-starter with the ability to operate hands-on and collaborate cross-functionally.
- Preferred: 7+ years in high-security environments, security certifications (OSCP, OSCE, OSWE), AWS/Kubernetes experience, and contributions to the security community.
- Competitive base salary ($182,300$252,500 USD) plus bonus and equity.
- Comprehensive medical, dental, and vision coverage with Health Savings Account contributions.
- Generous 401(k) plan with matching contributions.
- Employee Stock Purchase Plan (ESPP).
- Life and disability insurance.
- Paid holidays, vacation, and sick leave.
- Parental, family care, and military leave programs.
- Annual wellness, technology, and ergonomic reimbursements.
- Opportunities for team events, employee resource groups, and professional development.
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
#LI-CL1
Scan to Apply
Just scan this QR code to apply from your phone.
Job Location
United States, United States