Application Security Engineer
Bugcrowd
- Location
- India
- Posted
Application Security Engineer at Bugcrowd: Curate and manage security vulnerability submissions for top companies
Remote Jobs
Application Security Engineer
Binance
- Location
- Brunei Darussalam
- Posted
Application Security Engineer at Binance: Collaborate on mobile security, blockchain security, and AI tools
Mobile Application Security Engineer - Penetration Test
Binance
- Location
- Brunei Darussalam
- Posted
Mobile Application Security Engineer - Penetration Test at Binance: design, develop & maintain mobile apps with security functionality.
Principal Security Engineer - Application Security
Gusto, Inc.
- Location
- Canada
- Posted
- Salary Range
- 225k - 285k USD
Security Engineering role at Gusto, designing safe features with safety & privacy in mind, building security tools & services, 12+ yrs info sec exp reqd.
Senior Product Security Engineer | Application Security
ExtraHop
- Location
- United States of America
- Posted
Senior Product Security Engineer with experience in modern software development practices and securing web applications, APIs, and software systems.
Application Security Analyst
GuidePoint Security
- Location
- United States of America
- Posted
Assist in delivering Application Security services at GuidePoint Security by performing DevSecOps assessments, architecture reviews, threat modeling, and designing secure pipelines. Contribute to client engagements, deliver comprehensive reports, and strengthen application security capabilities while staying updated with industry trends and tools.
Intermediate Backend Engineer, Application Security Testing: Composition Analysis
Gitlab
- Location
- United States of America
- Posted
- Salary Range
- 98k - 210k USD
Enhance security posture by developing features for GitLab's products like Dependency Scanning and Container Scanning. Collaborate with cross-functional teams to maintain high quality in a fast-paced environment. Enjoy remote work and comprehensive benefits including equity compensation and home office support.
Intermediate Vulnerability Research Engineer - Application Security Testing: Vulnerability Research
Gitlab
- Location
- Israel
- Posted
Enhance GitLab's security capabilities by researching vulnerabilities, developing proofs of concept, curating databases, and improving detection products. Collaborate with teams to build secure solutions.
Intermediate Vulnerability Research Engineer - Application Security Testing: Vulnerability Research
Gitlab
- Location
- Anywhere in the world
- Posted
- Salary Range
- 98k - 210k USD
Enhance GitLab's security detection capabilities by conducting vulnerability research, improving SAST/DAST tools, curating advisory databases, and collaborating on product development in an all-remote environment.
Staff Security Developer - Application Security and Posture Management
Wealthsimple
- Location
- Canada
- Posted
- Salary Range
- 80k - 120k CAD
Join Wealthsimple as an Application Security Engineer and help secure our applications with your expertise in tooling, architecture, and offensive security testing. Collaborate with teams to mitigate risks and enhance security practices while enjoying top-tier benefits and a supportive remote-first culture.
Security Engineer
WorkOS
- Location
- United States of America
- Posted
- Salary Range
- 175k - 250k USD
Join WorkOS as a Security Engineer to enhance our security infrastructure, ensuring the safety of authentication and identity solutions for thousands of SaaS customers. Lead security projects, mentor teams, and implement best practices using tools like SCA, SAST, DAST, and CNAPP.
Security Engineer
Wealthfront
- Location
- United States of America
- Posted
- Salary Range
- 140k - 160k USD
Join Wealthfront's Security Engineering team as a security-minded engineer to build and mature security solutions in a fast-growing fintech organization.
Session Lead - Integrated Application Security Services Nanodegree Session lead
Udacity
- Location
- India
- Posted
Provide world-class technical support to students in their Nanodegree journey by leading weekly virtual sessions, responding to questions, and ensuring progress. Utilize expertise in Python, SQL, Big Data, Hadoop, and other relevant areas while fostering a supportive learning environment.
Security Infrastructure Engineer
CoinsPaid
- Location
- Croatia
- Posted
Join CoinsPaid as Security Infrastructure Engineer and enhance secure development practices with logging systems, Hashicorp Vault, and DevSecOps tools.
Network Security Engineer
GuidePoint Security
- Location
- United States of America
- Posted
Security Engineer for medium to very large environments with expertise in firewalls, IDS/IPS solutions, malware prevention, routing & switching architectures, cloud edge security, and more.
Lead Security Engineer
Curai
- Location
- United States of America
- Posted
- Salary Range
- 180k - 230k USD
Lead Security Engineer at Curai Health: Drive security initiatives, implement frameworks like ISO 27001/2 and NIST CSF, ensure HIPAA/SOC-2 compliance. Collaborate with engineering teams to maintain secure infrastructure in a remote-first environment.
Staff Security Engineer
Gradient AI
- Location
- United States of America
- Posted
Staff Security Engineer at Gradient AI: Manage overall security posture, lead risk assessments, cloud security, and implement best practices.
Senior Security Engineer
Phantom
- Location
- British Virgin Islands
- Posted
Join Phantom as a Security Engineer and contribute to the development of a secure self-custodial wallet for the crypto ecosystem.
Senior Security Engineer
Scribd
- Location
- Canada
- Posted
Senior Security Engineer at Scribd: Configure and integrate security tooling, analyze security findings, and perform incident response.
Application Security Engineer
Bugcrowd
Job Location
Job Summary
At Bugcrowd, we handle application security assessment at an epic scale. As an Application Security Engineer (ASE), you will curate and manage incoming security vulnerability submissions to some of the world's biggest companies' bug bounty programs. You will be exposed to cutting-edge security testing methodologies, obscure/complex vulnerabilities, and a variety of industries such as cars, IoT devices, embedded systems, mobile applications, and more. Our team is awesome, with tons of perks, including being selected as one of 'The 10 Coolest Security Startups Of 2016' by crn.com. You will have the opportunity to take your skills to the next level and contribute to groundbreaking projects. With a remote work option, you can thrive in our fast-paced environment. We value strong knowledge of OWASP Top Ten type vulnerabilities, proficiency with industry-standard tools, and excellent communication skills. If you're passionate about security assessment research and want to make a difference, we encourage you to apply.
Job Summary
At Bugcrowd, we handle application security assessment at an epic scale. As an Application Security Engineer (ASE) you will curate and manage the incoming security vulnerability submissions to some of the world’s biggest companies’ bug bounty programs. Here are just a few of the reasons why we are the best:
A tenure at Bugcrowd often means you have worked on not only one company’s security program but potentially on hundreds.
As an ASE at Bugcrowd you will be exposed to the Internet’s best security researchers and their cutting-edge security testing methodologies. Our ASEs quickly become technically fluent in obscure/complex XSS, SQLi, XXE, IDOR, SSTI, SSRF, and many other vulnerability types. There is no other organization that offers the learning opportunity that Bugcrowd does.
You will be exposed to things outside of your comfort zone. We routinely run security programs for cars, IoT devices, embedded systems, mobile applications, and more!
We have an awesome team and tons of perks. We’ve even been selected as one of “The 10 Coolest Security Startups Of 2016” by crn.com.
**Please note we are only considering candidates located in India at this time
Essential Duties & Responsibilities
An ASE is responsible for the ongoing triage and validation services of Bugcrowd managed programs. Under the direction of the Director of Technical Operations, you will take incoming submission data and curate it for validity, accuracy, and severity as well as communicate directly with Bugcrowd’s clients or researchers when additional information is required. ASEs also handle Incident Response – escalating and communicating about the highest severity bugs to clients. ASEs need to have strong knowledge of OWASP Top Ten type vulnerabilities. They also usually require a strong skill set in one scripting/development language, often to assist with the design or development of tooling for improving the triage/validation process. The ASE position is perfect for security professionals looking to take their skills to the next level.
Education, Experience, Skills, & Abilities
Bachelor’s degree or previous security consulting experience
Published and demonstrated passion for security assessment research
High proficiency with Burp Suite (or any other interception proxy) and a working level of experience with other industry standard tools (nmap, sqlmap, anything included in Kali Linux)
Ability to execute on individual projects but still contribute to the team
Ability to complete tasks on time
Strong organization, influencing, and communication skills
Working Conditions
The ideal candidate must be able to complete all physical requirements of the job with or without reasonable accommodation.
Sitting and/or standing - Must be able to remain in a stationary position 50% of the time
Carrying and /or lifting - Must be able to carry / move laptop as needed throughout the work day.
Environment - remote, work-from-home 100% of the time.
