As a Senior Application Security Engineer, you will lead application security programs, provide security guidance to development teams, manage security tooling, and collaborate on secure cloud infrastructure.
While we're proud of what we've already accomplished, we're searching for new collaborators to help us get to the next level! If you're looking to join a forward-thinking, rapidly growing organization with helping people as its number one goal, we want to hear from you.
As our Senior Application Security Engineer, you will be the primary owner and driver of our application security program. You’ll work hands‑on with engineering teams to embed secure development practices, improve tooling and automation, and guide security considerations for new features, architectures, and services.
This is a high‑impact role where you’ll shape the future of AppSec at a company that values security as a core part of product quality.
What You’ll Do
Application Security Ownership
- Lead and evolve the company’s application security strategy, roadmap, and day‑to‑day operations.
- Serve as the primary AppSec partner for numerous dev teams working on Ruby on Rails web apps, React Native mobile apps, and various other projects including Python and Go.
- Provide security guidance during design, development, and code review for new features and projects.
- Drive adoption of secure coding practices and threat‑modeling across engineering teams.
Tooling & Automation
- Manage and optimize existing AppSec tooling, including:
- GitHub Advanced Security (SAST, SCA, Secret Scanning)
- Invicti (DAST)
- Hadrian (ASM)
- AppDome (mobile application security)
- Cloudflare WAF
- Improve automation and integration of security tools into CI/CD pipelines.
- Identify and implement additional tools or processes to strengthen the security posture.
Secure SDLC & Developer Enablement
- Build and maintain secure development standards, playbooks, and training materials.
- Partner with engineering teams during sprint planning and feature design to proactively address risks.
- Conduct security reviews, code assessments, and vulnerability triage with development teams.
Cloud & DevOps Collaboration
- Work with DevOps to ensure secure AWS infrastructure deployments and configurations.
• • Contribute to hardening efforts across ECS, IAM, networking, and supporting cloud services.
Top Skills
Appdome
AWS
Cloudflare Waf
Github Advanced Security
Go
Hadrian
Invicti
Python
React Native
Ruby On Rails
Similar Jobs
Artificial Intelligence • Enterprise Web • Software • Design • Generative AI
As a Senior Application Security Engineer, you will secure Webflow's applications, implement secure development practices, and mentor junior engineers.
Top Skills:
Ai Coding AgentsApplication SecurityDastPenetration TestingSastSca Supply ChainSecure CodingThreat Modeling
Artificial Intelligence • Cloud • HR Tech • Information Technology • Productivity • Software • Automation
As a Senior Application Security Engineer, you'll secure AI infrastructure and collaborate on secure app development, conduct penetration testing, and enhance the AppSec program.
Top Skills:
AWSAzureBurp SuiteDastGCPGithub DependabotGoPythonSastSnyk
eCommerce • Information Technology • Software
The Senior Application Security Engineer ensures the security of systems and data by monitoring vulnerabilities, responding to incidents, and promoting security best practices within the organization.
Top Skills:
Aws CloudCloudflareDockerDynamoDBGitlabKubernetesLaravelMySQLNode.jsPHPServerless FrameworkSysdigVantaVue
What you need to know about the NYC Tech Scene
As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
