CrawlJobs Logo

Application Security Engineer

United States, San Francisco 147000.00 - 200000.00 USD / Year · Job Posted February 21, 2026
Apply Position
Job Link Share

Job Description

Biotechnology is rewriting life as we know it, from the medicines we take, to the crops we grow, the materials we wear, and the household goods that we rely on every day. But moving at the new speed of science requires better technology. Benchling’s mission is to unlock the power of biotechnology. The world’s most innovative biotech companies use Benchling’s R&D Cloud to power the development of breakthrough products and accelerate time to milestone and market. Come help us bring modern software to modern science. As an Application Security Engineer at Benchling you’ll be joining a team responsible for maintaining a best-in-class security program. Our focus is on providing value to the organization by emphasizing real world security and embracing automation. We’re looking for engineers who are excited to apply their expertise to our mission of securing some of society's most sensitive data.

Job Responsibility

  • Building and integrating external and internal security tools and automation into development and build environments
  • Developing lightweight processes to embed security in the SDLC workflow
  • Collaborating with engineers on the best ways to mitigate vulnerabilities and reduce risk
  • Performing code reviews of our services and apps
  • Partnering with both the Product Design and Software Engineering organization's security and privacy initiatives, leading security design reviews, and threat modeling
  • Participating in our incident response and vulnerability remediation efforts
  • Developing secure coding and design practices and training engineering teams
  • Performing black-box and gray-box penetration testing of our applications and services

Requirements

  • 2+ years work experience in an application security or product security role including experience with secure code reviews, threat modeling, pentesting, application security tooling and automation
  • Strong communicator with the ability to translate technical security requirements and risks into terms that anyone can understand
  • Experience finding AND fixing web application security vulnerabilities including those found in the OWASP Top 10 and CWE Top 25
  • Experience with at least one scripting language, preferably Python

Nice to have

  • Knowledge of the browser security model, modern network security, AI and cloud (AWS ideally) security
  • Experience with vulnerability management and risk assessment processes

What we offer

  • Competitive total rewards package
  • Broad range of medical, dental, and vision plans for employees and their dependents
  • Fertility healthcare and family-forming benefits
  • Four months of fully paid parental leave
  • 401(k) + Employer Match
  • Commuter benefits for in-office employees and a generous home office set up stipend for remote employees
  • Mental health benefits, including therapy and coaching, for employees and their dependents
  • Monthly Wellness stipend
  • Learning and development stipend
  • Generous and flexible vacation
  • Company-wide Winter holiday shutdown
  • Sabbaticals for 5-year and 10-year anniversaries

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Application Security Engineer

8 matching positions

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP virtual edition and LTM
  • 4+ years of experience designing, implementing, and administering F5 BIG-IP APM and ASM
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 1+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 1+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Application Security Engineer

The Opportunity: Everyone is trying to harness the cloud, but not everyone knows...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • Health
  • Life
  • Disability
  • Financial
  • Retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Fulltime
Read More
Arrow Right

Application Security Engineer

We are looking for an Application Security Engineer to strengthen secure softwar...
Location
Location
United States , Reading
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or another related technical discipline
  • At least 5 years of experience in information security, including 3 or more years dedicated to application security, secure software engineering, or DevSecOps
  • Proven success helping build, strengthen, or scale an application security program in a lead or highly influential capacity
  • Strong understanding of common application security risks, secure SDLC practices, and widely recognized vulnerability frameworks and standards
  • Hands-on experience with application security testing platforms such as Burp Suite, Fortify, Checkmarx, Veracode, or similar tools
  • Working knowledge of threat modeling, penetration testing, secure architecture review, and modern software security assessment techniques
  • Practical experience securing cloud environments such as AWS or Azure, along with familiarity with Kubernetes, container hardening, and runtime protection
  • Active passport required, with willingness and ability to travel internationally
Job Responsibility
Job Responsibility
  • Partner with software engineering and cybersecurity teams to build security into application design, coding practices, release processes, and production support
  • Perform in-depth security evaluations through code analysis, threat modeling, penetration testing, and vulnerability assessments to uncover and prioritize risk
  • Establish and uphold secure development standards, reusable patterns, and technical guidance that improve consistency across teams
  • Administer and enhance security controls within CI/CD workflows, including code scanning, infrastructure-as-code checks, and container security tooling
  • Contribute to architecture assessments for cloud-based systems, microservices, and containerized applications to ensure resilient and secure designs
  • Evaluate application risks and support formal security reviews to guide mitigation planning and informed technical decisions
  • Verify that application security activities align with applicable compliance obligations and recognized industry frameworks
  • Create and deliver training sessions that help developers strengthen secure coding habits and increase security awareness
  • Track emerging attack techniques and threat intelligence, then apply those insights to improve preventive and detective controls
  • Support the monitoring, investigation, and remediation of application security issues, while coordinating effectively with external vendors and consultants as needed
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
Read More
Arrow Right

Application Security Engineer

Everyone is trying to “harness the cloud,” but not everyone knows how. As a clou...
Location
Location
United States , Fort Meade
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience supporting DoD enterprise architectures
  • 4+ years of experience designing, implementing, and administering Palo Alto Next-Generation Firewalls to enable micro‑segmentation and identity‑aware access controls across complex enterprise environments
  • 4+ years of experience with Palo Alto Next‑Generation Firewalls (NGFW), including applying App‑ID, User‑ID, segmentation policies, and advanced security profiles
  • Experience working in DoD IL Clouds and on-premise private cloud environments
  • Experience working with VMware and NSX-T for micro‑segmentation, routing, and software‑defined networking
  • Experience working with SD-WAN technologies and topologies
  • Secret clearance
  • HS diploma or GED
What we offer
What we offer
  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2-5 years of experience in technology development
  • Expertise and hands on in one or more of the core areas of – Java Tech Stack (Java, JDK, JSP, Spring Boot/Angular)
  • Explore automation opportunities to reduce manual errors
  • Ability to work independently with minimal supervision
  • Take ownership, drive strategy
  • Quickly adopt the changes
Job Responsibility
Job Responsibility
  • Analyze current vulnerabilities in system and propose and establish common coding standards to avoid similar issues in future
  • Liaise with QA, support and other teams involved with testing, deploying, and maintaining environment applications, infrastructure and releases
  • Capable of working flexible hours to collaborate with team across the globe
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Security Risk Assessment Security Policies, Standards, Guidelines, And Procedure...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 3 years of experience in application security or software development with security focus
  • Strong experience in DevSecOps with a solid foundation in cybersecurity and risk assessment
  • Hands-on knowledge of secure software development lifecycle (SSDLC) principles and tools
  • Familiarity with integrating security testing tools and practices within CI/CD environments
  • Experience with secure coding and vulnerability assessments across common web and mobile technologies
  • Ability to work with and guide development teams without being directly involved in implementation
  • Excellent communication skills and the ability to translate complex security requirements into practical advice
Job Responsibility
Job Responsibility
  • Perform comprehensive risk assessments of development environments, DevOps workflows, and CI/CD processes
  • Perform security assessments, threat modelling, and code reviews to identify vulnerabilities in applications
  • Review and recommend improvements in areas such as identity and access management, network security, secure SDLC practices, source code management, cryptographic key handling, and data protection
  • Guide application teams on adopting secure development practices and integrating security tools such as SAST, DAST, and VAPT into their workflows
  • Review existing CI/CD pipelines from a security perspective and provide expert recommendations to align with DevSecOps principles
  • Mentor and advise internal teams on secure coding practices across various platforms and languages (e.g., JavaScript, Node.js, Java, C#, Python, etc.)
  • Develop and maintain secure coding guidelines and security standards
  • Collaborate with development teams to remediate security issues and provide guidance on secure coding practices
What we offer
What we offer
  • Hybrid working mode
  • 18 days of Annual leave
  • Comprehensive coverage including General Practitioner, hospitalization, dental, and optical
  • Annual bonus based on individual performance
  • Training programs, certification opportunities, and training incentives to support career growth
  • Regular team-building activities and social events
  • Fulltime
Read More
Arrow Right

Application Security Engineer

Performing regular penetration testing and vulnerability assessments on internal...
Location
Location
Türkiye , İstanbul
Salary
Salary:
Not provided
paribu.com Logo
Paribu
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Software Engineering, or a related field
  • Minimum 5 years of hands-on experience in web and mobile (iOS & Android) application security
  • Deep understanding of security standards and methodologies such as OWASP Top 10, OWASP Mobile Top 10, and SANS 25
  • Proficiency with application security testing and vulnerability analysis tools such as Burp Suite, Nessus, Acunetix, Fortify, Checkmarx, and MobSF
  • Strong knowledge of mobile application architectures, reverse engineering concepts, and secure coding principles
  • Experience contributing to SSDLC and integrating security into modern engineering and release processes
  • Familiarity with AI-assisted analysis and research workflows, and awareness of how AI can be applied in application security use cases
  • Excellent written and verbal communication skills in English
  • Strong analytical thinking, problem-solving capabilities, and a team-oriented mindset
  • Relevant certifications such as OSCP, OSWE, CEH, GWAPT, GMOB, eWPT, or eMAPT are highly preferred
Job Responsibility
Job Responsibility
  • Performing regular penetration testing and vulnerability assessments on internally developed and third-party web, iOS, and Android applications
  • Managing and integrating SAST, DAST, and IAST tooling into application security processes and engineering workflows
  • Contributing to the continuous improvement of the Secure Software Development Life Cycle (SSDLC) and DevSecOps pipelines
  • Conducting secure code reviews in close collaboration with software development teams
  • Producing clear and actionable security findings, providing remediation guidance, and tracking vulnerabilities through resolution
  • Monitoring the latest cybersecurity threats, zero-day vulnerabilities, and attack vectors to help strengthen proactive defense mechanisms
  • Collaborating with engineering and product teams to improve the security posture of applications across development, testing, and production environments
  • Applying AI-supported approaches in security research, vulnerability analysis, and workflow efficiency, while maintaining a strong understanding of secure and responsible AI usage in cybersecurity contexts
What we offer
What we offer
  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Fulltime
Read More
Arrow Right