Senior Application Security Engineer at Jobgether – United States

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Application Security Engineer in the United States.

In this role, you will help strengthen the security posture of a large-scale, modern web platform used by hundreds of thousands of organizations worldwide. You will work closely with engineering teams to embed security into every stage of the software development lifecycle, ensuring applications are resilient, secure, and built with best practices from the ground up. This position sits at the intersection of application security, software engineering, and platform architecture, with a strong focus on scalable security design and automation. You will identify vulnerabilities using advanced testing techniques, influence secure coding standards, and help remediate complex security risks in production systems. The environment is highly collaborative, fast-paced, and innovation-driven, with strong exposure to cutting-edge technologies including AI-assisted engineering. Your work will directly contribute to protecting users, data, and mission-critical digital experiences at global scale.

You will be responsible for embedding security across the application lifecycle, strengthening engineering practices, and ensuring secure-by-design principles are consistently applied.

• Collaborate with engineering teams to integrate security into the software development lifecycle and ensure secure application design.
• Conduct grey-box security assessments to identify vulnerabilities, including design flaws and business logic issues, and define remediation strategies.
• Support and evolve application security programs and tooling, including SAST, DAST, SCA, supply chain security, and bug bounty initiatives.
• Contribute to secure architecture design and implement security controls directly within large-scale web applications.
• Lead or support threat modeling activities and ensure findings are clearly documented, prioritized, and resolved.
• Participate in incident response efforts, including triage, containment, remediation, and post-incident security improvements.
• Mentor junior application security engineers and help elevate overall security engineering maturity across teams.

You bring deep application security expertise combined with strong software engineering knowledge and a proactive, systems-thinking mindset.

• 5+ years of experience in application security, including hands-on software development and securing large-scale web applications.
• Strong expertise in secure coding practices, secure software design, and modern web application security principles.
• Experience leading threat modeling exercises, penetration testing, or managing third-party security assessments.
• Proven ability to manage application security programs such as SAST, DAST, SCA, or bug bounty platforms.
• Experience contributing to security controls or features within complex systems (e.g., authentication, authorization, or access control models).
• Familiarity with security automation and use of AI-assisted tools to scale vulnerability detection and remediation.
• Experience supporting incident response activities from triage through resolution.
• Strong communication skills with the ability to collaborate effectively across engineering and product teams.

• Competitive compensation with location-based salary ranges and performance bonus eligibility
• Equity/RSU ownership in a high-growth, private technology company
• 100% employer-paid health, dental, and vision insurance for employees and dependents
• Flexible PTO and structured parental leave programs
• Remote-first work environment with global collaboration flexibility
• Home office, internet, and wellness stipends
• Mental health support, coaching, and employee assistance programs
• Retirement and financial wellness benefits, including regional savings plans