CrawlJobs Logo

Security Remediation Engineer

United Kingdom, London 650.00 - 800.00 GBP / Day · Job Posted July 04, 2026
Apply Position
Job Link Share

Job Description

The Security Remediation Engineer will support the delivery of hands-on application, workflow, release and logging remediation within a security assessment remediation programme. The successful contractors will work with AppSec / DevSecOps, QA automation, MLOps, Data / AI Governance, ServiceNow / Jira specialists and the Security Remediation Lead to implement application-level changes that close controls and generate usable evidence. This is a remediation engineering role. Candidates should be comfortable working in existing codebases, improving delivery workflows, tightening operational controls and documenting implementation evidence.

Job Responsibility

  • Support the delivery of hands-on application, workflow, release and logging remediation within a security assessment remediation programme
  • Work with AppSec / DevSecOps, QA automation, MLOps, Data / AI Governance, ServiceNow / Jira specialists and the Security Remediation Lead to implement application-level changes that close controls and generate usable evidence

Requirements

  • Security, hands-on application, workflow, release and logging remediation
  • Analyse assessment findings and translate assigned remediation items into concrete software changes
  • Implement changes to application workflows, state transitions, access checks, release flows and integration behaviours
  • Support Jira workflow and status changes where application or delivery process alignment is required
  • Create or update release and rollback playbooks with practical engineering input
  • Improve application logging for user activity, security-relevant events, errors and operational diagnostics
  • Integrate with Application Insights, Log Analytics or comparable monitoring and telemetry tooling
  • Support secrets management and secure configuration using Azure Key Vault, managed identities and controlled deployment settings
  • Work with AppSec / DevSecOps engineers to remediate vulnerabilities, dependency issues and secure coding findings
  • Work with QA automation to increase regression coverage and make remediation test evidence repeatable
  • Support PostgreSQL access governance, data handling, retention and auditability improvements where application changes are needed
  • Maintain traceability from Jira tickets to code changes, pull requests, tests, releases and evidence artefacts
  • Document changes clearly enough for control owners, retesters and BAU maintainers to understand the control outcome

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Security Remediation Engineer

8 matching positions

Security Engineer (Security Operations)

Everlaw is looking for a Security Engineer. Reporting to the Manager, Security E...
Location
Location
United States , Oakland
Salary
Salary:
159000.00 - 201000.00 USD / Year
everlaw.com Logo
Everlaw
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 1-3 years of experience working in a security-focused role
  • Experience in handling security events and incidents from initial triage through to remediation
  • Programming skills in at least one scripting language (like Python) and are comfortable navigating a Linux environment
  • Experience with security tools like vulnerability scanners (Nessus/Trivy), HIDS/NIDS (Wazuh/Zeek), and SIEM/SOAR platforms (Splunk/ELK/Datadog)
  • Understand the vulnerability lifecycle and have experience detecting, prioritizing, and remediating vulnerabilities
  • Written detection rules and response processes for security specific events
  • Can explain technical concepts without jargon, keeping security relatable so that others can solve problems with your support
  • Balance strong protections with enabling people to do their work, finding ways to improve security without blocking innovation
  • Authorized to work in the United States without restrictions
Job Responsibility
Job Responsibility
  • Support the team to drive improvements in our vulnerability management, threat detection, and incident response capabilities, contributing your perspective to help the team grow
  • Triage security events and respond to security incidents, taking action to contain them, guiding recovery of normal operations, and reducing the likelihood of recurring threats
  • Strengthen threat detection and response systems that safeguard both our cloud infrastructure, third-party integrations, and platform services
  • Develop and refine security processes, procedures, and runbooks that allow our security posture to scale as the company grows
  • Manage and tune AWS security services (IAM, Security Hub, GuardDuty, Config) for effective threat detection, access control, and continuous monitoring
  • Collaborate with Engineering, Engineering Operations, Corporate Security, and GRCT teams to help meet our operational security commitments by probing for vulnerabilities, assessing risk, and advising on how to respond to them
  • Advise other engineers and partners on building a secure platform by leading threat modeling sessions, conducting security design reviews, and reviewing code and configuration changes for security concerns
  • Proactively solve security challenges and foster a security mindset with innovative, security-conscious coworkers across Everlaw
What we offer
What we offer
  • Equity program
  • 401(k) retirement plan with company matching
  • Health, dental, and vision
  • Flexible Spending Accounts for health and dependent care expenses
  • Paid parental leave and approximately 10 days (80 hours) per year of sick leave
  • Seventeen paid vacation days plus 11 federal holidays
  • Membership to Modern Health to help employees prioritize mental health and wellness
  • Annual allocation for Learning & Development opportunities and applicable professional membership dues
  • Company-sponsored life and disability insurance
  • Work in Downtown Oakland, just steps from the BART line and dozens of restaurants
  • Fulltime
Read More
Arrow Right

Security Engineer, Product Security

We are seeking a highly technical Security Engineer to join our Product Security...
Location
Location
United States , New York, NY; San Francisco, CA; Seattle, WA; Washington, DC
Salary
Salary:
237600.00 - 297000.00 USD / Year
scale.com Logo
Scale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated ability to drive multi-month security initiatives independently, from problem definition through execution, without requiring significant direction
  • Proven experience as a Security Engineer with a focus on product security
  • Proficiency in NodeJS, TypeScript, Python, and/or Kubernetes
  • Strong understanding of modern Javascript application design
  • Production experience operating and securing AWS infrastructure at scale
  • Hands-on experience with SAST and DAST tools and methodologies
  • Familiarity with terraform orchestration for infrastructure management
  • You can structure complex problems and diagnose root causes independently, providing actionable insights without requiring manager input
  • Excellent communication skills, with the ability to clearly present technical concepts and their implications to both technical and non-technical stakeholders
  • Demonstrated ability to influence security strategies and drive improvements within a team
Job Responsibility
Job Responsibility
  • Leverage broad product security expertise to build and maintain software tooling that secures every layer of the modern AI/ML software ecosystem
  • Conduct in-depth code reviews to identify and remediate security vulnerabilities
  • Evaluate and enhance the security of our product offerings, through RFC and service review
  • Implement and maintain CI/CD pipelines with a strong focus on security
  • Perform Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) to identify vulnerabilities in production code
  • Utilize terraform orchestration to ensure secure and efficient infrastructure management
  • Guide engineering teams to build robust long-term solutions that consider security and privacy
  • Clearly explain the mechanics and significance of security vulnerabilities, including their exploitability and potential impact
  • Influence the security strategy and direction of the team, advocating for best practices and continuous improvement
What we offer
What we offer
  • Comprehensive health, dental and vision coverage
  • retirement benefits
  • learning and development stipend
  • generous PTO
  • commuter stipend
  • Fulltime
Read More
Arrow Right

Security Engineer (Cloud Security)

We are looking for a Senior Security Engineer with a focus on cloud security to ...
Location
Location
Qatar , Doha
Salary
Salary:
Not provided
qic.digital Logo
QIC digital hub
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience securing Google Cloud Platform (GCP) environments (IAM, least privilege, service accounts, Workload Identity, VPC security, firewalls, egress control, Org Policies, Security Command Center, audit logging, misconfiguration detection)
  • Solid experience securing Kubernetes (GKE) (cluster hardening, API access, RBAC, network policies, workload isolation, pod security, secrets management, container/image security, runtime monitoring e.g. Falco, policy enforcement with OPA/Kyverno)
  • Experience with WAF solutions (preferrably F5.) and rule tuning
  • Practical experience with ZTNA (e.g. Cloudflare Access, Zscaler) and understanding of OAuth2, OIDC, JWT
  • Strong hands-on experience with Infrastructure as Code (Terraform)
  • Good understanding of web and API security (OWASP Top 10)
  • Experience with logging, monitoring, and incident response in cloud environments
  • Ability to identify and mitigate real-world security risks and attack vectors
  • Strong problem-solving skills and ability to work independently in a fast-paced environment
  • Focus on practical, scalable security solutions rather than theoretical or compliance-only approaches
Job Responsibility
Job Responsibility
  • Design and implement secure architecture in GCP
  • Secure and harden Kubernetes clusters (GKE) across network, workloads, and access layers
  • Build and operate Zero Trust access model based on Zero Trust Architecture
  • Configure, tune, and maintain WAF solutions (e.g. Cloudflare, Google Cloud Armor, F5)
  • Identify and remediate cloud and Kubernetes misconfigurations
  • Implement security logging, monitoring, and detection use cases for cloud-native environments
  • Lead or support incident response (triage, containment, root cause analysis, post-incident improvements)
  • Partner with DevOps and Engineering teams to integrate security into infrastructure
  • Define and enforce security baselines, hardening standards, and guardrails across cloud environments
What we offer
What we offer
  • Generous vacation time, paid sick leave, and bonus days for years of service
  • Language classes
  • Workshops on investing, mental wellbeing, and intercultural communication
  • $600/year for additional courses, plus internal workshops
  • QIC running club
  • Relocation support
  • Remote health insurance with up to $1,500 in dental coverage
  • Tax consultations
  • Travel discounts with Qatar Airways, Turkish Airlines, and Doha hotel partners
  • USD, EUR, or AED salary payouts
  • Fulltime
Read More
Arrow Right

Security Engineer, Application Security

As a Security Engineer, Application Security you will be responsible for identif...
Location
Location
United States , San Francisco; Seattle; New York City
Salary
Salary:
260000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles
  • Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response
  • Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks
  • Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods
  • Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software
  • Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats
  • Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines
  • Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies
  • Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts
  • Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents
  • Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

Security Engineer, Application Security

As a Security Engineer, Application Security you will be responsible for identif...
Location
Location
United States , New York City; San Francisco; Seattle
Salary
Salary:
260000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles
  • Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response
  • Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks
  • Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods
  • Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software
  • Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats
  • Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines
  • Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies
  • Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts
  • Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents
  • Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

Security Engineer, Application Security

As a Security Engineer, Application Security you will be responsible for identif...
Location
Location
United States , Seattle; San Francisco; New York City
Salary
Salary:
260000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles
  • Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response
  • Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks
  • Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods
  • Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Perform Security Assessments: Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software
  • Develop and Implement Security Tools: Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats
  • Collaborate with Development Teams: Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines
  • Threat Modeling and Risk Assessment: Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies
  • Vulnerability Management: Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts
  • Incident Response Support: Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents
  • Stay Current on Security Trends: Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

Security Engineer, Corporate Security

As a Security Engineer on the Corporate Security team, you will contribute to th...
Location
Location
United States; Canada
Salary
Salary:
123000.00 - 167000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–5 years of combined experience in IT or security, with a focus on corporate or enterprise identity management
  • Hands-on experience administering and securing identity providers such as Okta, Google Workspace, or Azure AD, including SSO, federation, MFA, and SCIM provisioning and access policies
  • Strong understanding of identity security fundamentals, including RBAC, access governance, lifecycle management, and how identity underpins secure SaaS adoption
  • Experience working in a remote-first environment where identity and device posture form the basis of access control. Hands-on experience configuring or supporting conditional access policies, leveraging device posture signals (via tools such as Kandji, Jamf, CrowdStrike, or SentinelOne), and working with ZTNA or modern VPN solutions (e.g., Tailscale, Twingate, Palo Alto Prisma Access, Zscaler)
  • Experience using scripting or automation (e.g., Python, Bash, Terraform) to support identity operations, configuration as code (CaC), or workflow automation
  • Strong collaboration and communication skills, with the ability to work effectively within the Identity squad, across IT Engineering, and with partner teams such as Procurement and GRC
  • A growth mindset, ownership mentality, and a commitment to developing skills while contributing to the maturity of the Corporate Security team
Job Responsibility
Job Responsibility
  • Work as part of the Identity Security squad, driving improvements to identity processes to ensure secure and efficient access for employees, contractors, and non-human users
  • Collaborate closely with IT Engineering’s Identity squad to support identity lifecycle management, access provisioning/deprovisioning automation, and alignment on identity roadmap priorities
  • Use and help improve 1Password’s identity-related products (1Password, Trelica, Kolide), acting as a customer zero by dogfooding features, identifying gaps, and providing actionable feedback to product and engineering teams
  • Assist in developing and maintaining configuration standards and governance for identity platforms, including detection and remediation of configuration drift
  • Leverage scripting, automation, and configuration as code to make identity management more scalable, repeatable, and auditable
  • Partner with other Corporate Security squads (SaaS and Endpoint Security) to address overlapping responsibilities and ensure identity controls are effectively integrated into broader security initiatives
  • Work cross-functionally with Procurement and GRC to align identity controls with vendor onboarding, compliance needs, and organizational risk posture
  • Support identity-related projects from planning through execution - coordinating with IT Engineering and application owners, ensuring deliverables meet security and business requirements
  • Participate in security audits, tabletop exercises, and identity-related incident response activities
  • Grow your skills through mentorship and collaboration, contributing to the overall maturity of the Corporate Security team while being supported in your own professional development
What we offer
What we offer
  • health benefits
  • dental benefits
  • 401k (USA) / RRSP (Canada)
  • generous paid time off
  • equity grant
  • participation in incentive programs
  • maternity and parental leave top-up programs
  • RSU program for most employees
  • retirement matching program
  • free 1Password account
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application Security

Application Security enables 1Password to build and deliver secure products with...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of career experience in IT or Engineering with a security focus
  • Passion for and strong experience with any of: bug bounty programs, vulnerability research, validation, remediation or pentesting
  • Experience with internal tool development and engineering enablement
  • Strong foundational understanding of software development principles, and are comfortable reading and writing code
  • Work well in a team environment with positive communications amongst a variety of technical and non-technical stakeholders
  • Comfortable owning and setting technical direction for small to medium sized initiatives
  • Adaptable and resilient, thriving in fast-paced environments with shifting priorities
Job Responsibility
Job Responsibility
  • Design, build, integrate and scale new security solutions to power our vulnerability management program
  • Develop and maintain tools that correlate, enrich, and prioritize security vulnerability findings from multiple data sources
  • Develop and maintain comprehensive dashboards and reporting metrics around our vulnerability management program, tailored to different audiences (technical, non-technical, compliance, senior leadership, etc.)
  • Conduct detailed analysis used to inform security development teams to eliminate classes of vulnerabilities
  • Partner with product and development teams to improve vulnerability triage workflows, validate findings, and come up with remediation strategies consistent with good user experiences
  • Contribute to the design of risk-scoring and SLA models that align with business priorities
  • Mentor other engineers and help shape the evolution of our vulnerability management strategy
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k/RRSP
  • Generous PTO policy
  • Equity grant
  • Incentive programs
  • Maternity and parental leave top-up programs
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Fulltime
Read More
Arrow Right