CrawlJobs Logo

Senior Application Security Engineer II

United States, Seattle 148500.00 - 237600.00 USD / Year · Job Posted February 17, 2026
Apply Position
Job Link Share

Job Description

As a Senior Application Security Engineer, you will drive security initiatives that integrate seamlessly into the software development lifecycle. This role is all about empowering development teams with the tools, knowledge, and processes to build secure applications. You’ll work side-by-side with developers as a security partner, not just a reviewer, to enhance our security posture while maintaining speed and innovation. You will leverage your strong software development background and application security expertise to build scalable security automation and tooling. This role is perfect for someone who is passionate about automating processes, enabling teams, and solving complex security challenges at scale.

Job Responsibility

  • Integrate Security into Development
  • Build and maintain security automation tools to seamlessly embed security checks into CI/CD pipelines
  • Partner with engineering teams to design secure-by-default architectures and workflows
  • Enable Developer Success
  • Act as a trusted advisor and partner for development teams, providing actionable guidance to address security issues
  • Deliver training and mentorship on secure coding practices, empowering teams to proactively prevent vulnerabilities
  • Proactively Identify Risks
  • Deploy and operationalize static (SAST), dynamic (DAST), and dependency (SCA) scanning tools
  • Lead vulnerability management efforts, ensuring critical vulnerabilities are identified, prioritized, and remediated
  • Advocate for a “security debt” reduction mindset to maintain long-term product integrity
  • Champion Security Automation
  • Create and enhance tools that automate repetitive tasks and accelerate vulnerability detection and remediation
  • Stay ahead of industry trends to evaluate and implement cutting-edge security solutions

Requirements

  • Proficiency in programming languages like Python, Java, Go, or C#
  • Strong experience with modern development workflows, including CI/CD pipelines and Git-based version control
  • In-depth understanding of vulnerabilities and secure coding practices
  • Hands-on experience with security tools like Snyk, Semgrep, or similar
  • Ability to simplify and communicate technical security concepts to diverse audiences
  • Demonstrated success in partnering with developers to integrate security without disrupting velocity
  • Experience performing secure code reviews and interpreting SAST/DAST results
  • Familiarity with cloud platforms (AWS, Azure, GCP) and containerization (Docker, Kubernetes)

Nice to have

  • Contributions to or leadership in open-source security tools
  • Relevant certifications

What we offer

  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Employee Resource Groups (ERGs)
  • Snacks in our offices

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Application Security Engineer II

8 matching positions

Senior Cyber Security Engineer II-Identity Governance

The Sr. Cyber Security Engineer II – Identity Governance is a pivotal role respo...
Location
Location
United States , Framingham
Salary
Salary:
139000.00 - 191000.00 USD / Year
staplespromo.com Logo
Staples Promotional Products
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, or a related field or equivalent work experience
  • 10 or more years of progressively complex experience in cybersecurity
  • Proven experience with cybersecurity frameworks (e.g., NIST, ISO 27001)
  • Hands-on experience with security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering
  • Knowledge of network protocols and data encryption methods
  • Hands-on experience supporting Active Directory in an enterprise environment
  • Practical experience with identity and access management concepts including: user lifecycle provisioning, entitlement management, role-based access control (RBAC)
  • Experience building or supporting application integrations with an IGA platform
  • Experience supporting SSO and authentication integrations
  • Working knowledge of conditional access and modern authentication controls
Job Responsibility
Job Responsibility
  • Engineer, maintain, and secure Active Directory components including domains, OUs, group structures, service accounts, and delegated administration models
  • Support hybrid identity patterns integrating on‑premises Active Directory with cloud identity platforms
  • Partner with infrastructure and cloud teams to ensure directory services are resilient, monitored, and aligned to security best practices
  • Apply Zero Trust security concepts to identity systems, recognizing Active Directory and identity connectors as high‑risk control plane assets
  • Support privileged access separation, administrative role scoping, and least‑privilege enforcement across identity platforms
  • Participate in hardening initiatives to reduce privilege escalation paths and credential exposure within identity services
  • Implement and support SSO and federation integrations using industry‑standard protocols (SAML, OIDC, OAuth)
  • Assist in designing and maintaining conditional access policies based on user risk, role, device posture, and authentication context
  • Troubleshoot authentication and authorization issues across directories, identity providers, and integrated applications
  • Support joiner / mover / leaver lifecycle processes across Active Directory and downstream applications
What we offer
What we offer
  • Competitive base salary + bonus on eligible positions
  • 22 days plus 7 major holidays and 1 floating holiday
  • Company match 401(k) plan
  • Online and retail discounts
  • Physical and mental health wellness programs
  • Daycare, cafeteria, fitness center, and coffee shop at our HQ
  • Inclusive culture with associate-led Business Resource Groups
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , Warrenton
Salary
Salary:
185000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Endpoint Security Engineering (Trellix/ePO): Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
  • Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
  • Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
  • Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
  • Vulnerability Management (ACAS/Nessus): Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
  • Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
  • Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
  • Security Integration & Engineering: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
  • Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
  • Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , San Antonio
Salary
Salary:
160000.00 - 175000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Security Engineer II - Threat Modeling & AI

Sec Eng at Uber means building for real-world impact under real-world constraint...
Location
Location
Brazil , Sao Paulo
Salary
Salary:
Not provided
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior/Staff seniority in a Security Engineer role, specifically within threat modeling or security architecture
  • Proficiency in Python or Go, with the ability to write modular, high-quality code and pass a technical coding interview
  • Experience performing offensive security testing and identifying architectural gaps in distributed systems (microservices, APIs, or cloud infrastructure)
  • Demonstrated knowledge of AI-specific security risks, including OWASP Top 10 for LLM or Agentic Applications
  • Bachelor’s degree in Computer Science, a related technical field, or equivalent practical experience
Job Responsibility
Job Responsibility
  • Red team AI agents and developer tools to identify vulnerabilities, creating reproducible PoCs and clear mitigation paths for engineering teams
  • Translate complex standards like the OWASP Top 10 for LLMs into Uber-specific reference architectures and enforceable security controls
  • Drive findings through to completion by partnering across disciplines—including engineering, legal, and external vendors—to land fixes in a fast-paced environment
  • Scale your security testing by building automated evaluation harnesses and AI-driven regression coverage to keep pace with rapid deployment
  • Communicate residual risk to non-technical stakeholders and leadership, translating technical debt into actionable business decisions
  • Own the security bar for agentic workflows and vendor onboarding, ensuring that guardrails are integrated into the developer experience from day one
Read More
Arrow Right

Senior Application Engineer (Salesforce Agentforce AI)

We’re looking for creative thinkers with hands-on experience in Agentforce, AI a...
Location
Location
Canada , Mississauga
Salary
Salary:
112000.00 - 125000.00 USD / Year
pointclickcare.com Logo
PointClickCare
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience building Agentforce AI Agents, AI workflows, custom agent development, and integration of external data sources
  • Experience creating intelligent process automations using tools like Power Automate or others
  • Solid experience creating test automations for Salesforce and other platforms
  • Solid experience writing clean code that performs well at scale using JavaScript, Apex, Python, etc.
  • Solid experience with Salesforce integrations and external system integrations (Conga, Docusign, Adobe, Marketo, Gainsight, Gong, Qualtrics, Kantata, TaskRay, etc.)
  • Proficient in DevOps processes and tools (e.g., Copado, AutoRabit)
  • Proficient in GITHUB and troubleshooting standard versioning and DevOps issues
  • Proficient in Agile methodologies (Scrum/Kanban) to iteratively deliver standard solutions
  • Solid experience with automated testing frameworks (e.g. PMD, Selenium, Copado CRT)
  • In-depth understanding of Salesforce data models, security, and governor limits
Job Responsibility
Job Responsibility
  • Work at the forefront of AI-driven Salesforce solutions and build AI Agents using Agentforce, and other AI platforms like Microsoft Studio for CoPilot Agents
  • Pioneer intelligent automations in enterprise environments using IPA tools like Power Automate, Alteryx, and others
  • Build test automations to improve QA efficiencies in QA for Salesforce and other applications
  • Collaborate with product designers, end-users, and other team members to refine and understand outcomes and AI use cases
  • Collaborate with other team members to brainstorm ideas for prototyping to test and solution for use cases identified and prioritized
  • Execute standard to complex tasks in the application development life cycle using languages like Apex, JavaScript, Python, etc., etc., relevant to the core applications (Salesforce, Billing Platform, etc.) and connected or integrated apps (Conga, Docusign, Adobe, Marketo, Gainsight, Gong, Qualtrics, Kantata, TaskRay, etc.)
  • Perform unit tests for your builds and collaborate with Product Designers and other team members to create accurate and quality test scripts for automated and manual testing
  • Analyze, troubleshoot, and debug systems for standard issues
  • Be an AI change agent in your team to gain team buy-in for adopting use of AI agents to save time, reduce waste and improve efficiency to deliver value to customers faster
  • Create and maintain technical documentation for all builds and AI Agents produced
What we offer
What we offer
  • Benefits starting from Day 1
  • Retirement Plan Matching
  • Flexible Paid Time Off
  • Wellness Support Programs and Resources
  • Parental & Caregiver Leaves
  • Fertility & Adoption Support
  • Continuous Development Support Program
  • Employee Assistance Program
  • Allyship and Inclusion Communities
  • Employee Recognition
  • Fulltime
Read More
Arrow Right

Senior Application Engineer (Salesforce Agentforce AI)

We’re looking for creative thinkers with hands-on experience in Agentforce, AI a...
Location
Location
United States
Salary
Salary:
121000.00 - 135000.00 USD / Year
pointclickcare.com Logo
PointClickCare
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience building Agentforce AI Agents, AI workflows, custom agent development, and integration of external data sources
  • Experience creating intelligent process automations using tools like Power Automate or others
  • Solid experience creating test automations for Salesforce and other platforms
  • Solid experience writing clean code that performs well at scale using JavaScript, Apex, Python, etc.
  • Solid experience with Salesforce integrations and external system integrations (Conga, Docusign, Adobe, Marketo, Gainsight, Gong, Qualtrics, Kantata, TaskRay, etc.)
  • Proficient in DevOps processes and tools (e.g., Copado, AutoRabit)
  • Proficient in GITHUB and troubleshooting standard versioning and DevOps issues
  • Proficient in Agile methodologies (Scrum/Kanban) to iteratively deliver standard solutions
  • Solid experience with automated testing frameworks (e.g. PMD, Selenium, Copado CRT)
  • In-depth understanding of Salesforce data models, security, and governor limits
Job Responsibility
Job Responsibility
  • Work at the forefront of AI-driven Salesforce solutions and build AI Agents using Agentforce, and other AI platforms like Microsoft Studio for CoPilot Agents
  • Pioneer intelligent automations in enterprise environments using IPA tools like Power Automate, Alteryx, and others
  • Build test automations to improve QA efficiencies in QA for Salesforce and other applications
  • Collaborate with product designers, end-users, and other team members to refine and understand outcomes and AI use cases
  • Collaborate with other team members to brainstorm ideas for prototyping to test and solution for use cases identified and prioritized
  • Execute standard to complex tasks in the application development life cycle using languages like Apex, JavaScript, Python, etc., etc., relevant to the core applications (Salesforce, Billing Platform, etc.) and connected or integrated apps (Conga, Docusign, Adobe, Marketo, Gainsight, Gong, Qualtrics, Kantata, TaskRay, etc.)
  • Perform unit tests for your builds and collaborate with Product Designers and other team members to create accurate and quality test scripts for automated and manual testing
  • Analyze, troubleshoot, and debug systems for standard issues
  • Be an AI change agent in your team to gain team buy-in for adopting use of AI agents to save time, reduce waste and improve efficiency to deliver value to customers faster
  • Create and maintain technical documentation for all builds and AI Agents produced
What we offer
What we offer
  • Benefits starting from Day 1
  • Retirement Plan Matching
  • Flexible Paid Time Off
  • Wellness Support Programs and Resources
  • Parental & Caregiver Leaves
  • Fertility & Adoption Support
  • Continuous Development Support Program
  • Employee Assistance Program
  • Allyship and Inclusion Communities
  • Employee Recognition
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Recruitics is a data-centric recruitment marketing agency. We are looking for a ...
Location
Location
United States , New York
Salary
Salary:
120000.00 - 250000.00 USD / Year
recruitics.com Logo
Recruitics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5-7 years of experience in Security, or related roles, with at least 2-3 years working within a DevOps ecosystem
  • Hands-on experience with security tools such as SonarQube, Crowdstrike, mimecast, and tenable
  • Strong knowledge of infrastructure-as-code (IaC) tools such as Terraform, CloudFormation, or Ansible
  • Expertise in automation scripting (Python, Bash, or similar languages)
  • Experience with version control systems (Git, GitLab, Bitbucket)
  • Familiarity with security protocols and standards (OAuth, SSL/TLS, PKI)
  • Strong knowledge of network security, firewalls, identity and access management (IAM), and encryption technologies
  • Experience with vulnerability scanning tools and static/dynamic analysis
  • Strong problem-solving and analytical skills
  • Excellent communication and collaboration skills, with the ability to work with cross-functional teams
Job Responsibility
Job Responsibility
  • Secure Architecture: Under the guidance of the VP of Information Security, maintain a secure cloud architecture and evangelize security best practices within the enterprise that comply with our SOC II policies and procedures
  • DevSecOps Integration: Collaborate closely with Development, Operations, and Security teams to integrate security practices into the development lifecycle and DevOps processes
  • Vulnerability Management: Conduct vulnerability assessments, security testing, and advise teams on remediation
  • Cloud Security: Oversee and enhance the security posture of cloud-based infrastructure (AWS), ensuring secure deployments and configurations
  • Compliance & Best Practices: Ensure that security controls are aligned with industry standards and best practices (e.g., OWASP, NIST, GDPR) and work toward achieving and maintaining compliance
  • Incident Response: Be the technical point of contact on security incidents, providing expertise in root cause analysis and remediation
  • Monitoring & Auditing: Implement monitoring tools to detect and respond to security incidents and audit the security of systems and applications
  • Security Training & Awareness: Provide guidance and training to other teams on security best practices, secure coding techniques, and threat mitigation strategies
  • Tooling & Infrastructure: Select, deploy, and manage security tools and frameworks for automated security testing, vulnerability scanning, and threat detection
What we offer
What we offer
  • Competitive compensation and benefits
  • Casual work environment
  • Recruitics themed shirts roughly once a quarter
  • Part of a close-knit group in a fun work environment
  • Opportunities for career growth
Read More
Arrow Right

Senior Security Engineer

Recruitics is a data-centric recruitment marketing agency that makes it easy for...
Location
Location
United States , New York
Salary
Salary:
120000.00 - 250000.00 USD / Year
recruitics.com Logo
Recruitics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5-7 years of experience in Security, or related roles, with at least 2-3 years working within a DevOps ecosystem
  • Hands-on experience with security tools such as SonarQube, Crowdstrike, mimecast, and tenable
  • Strong knowledge of infrastructure-as-code (IaC) tools such as Terraform, CloudFormation, or Ansible
  • Expertise in automation scripting (Python, Bash, or similar languages)
  • Experience with version control systems (Git, GitLab, Bitbucket)
  • Familiarity with security protocols and standards (OAuth, SSL/TLS, PKI)
  • Strong knowledge of network security, firewalls, identity and access management (IAM), and encryption technologies
  • Experience with vulnerability scanning tools and static/dynamic analysis
  • Strong problem-solving and analytical skills
  • Excellent communication and collaboration skills, with the ability to work with cross-functional teams
Job Responsibility
Job Responsibility
  • Secure Architecture: Under the guidance of the VP of Information Security, maintain a secure cloud architecture and evangelize security best practices within the enterprise that comply with our SOC II policies and procedures
  • DevSecOps Integration: Collaborate closely with Development, Operations, and Security teams to integrate security practices into the development lifecycle and DevOps processes
  • Vulnerability Management: Conduct vulnerability assessments, security testing, and advise teams on remediation
  • Cloud Security: Oversee and enhance the security posture of cloud-based infrastructure (AWS), ensuring secure deployments and configurations
  • Compliance & Best Practices: Ensure that security controls are aligned with industry standards and best practices (e.g., OWASP, NIST, GDPR) and work toward achieving and maintaining compliance
  • Incident Response: Be the technical point of contact on security incidents, providing expertise in root cause analysis and remediation
  • Monitoring & Auditing: Implement monitoring tools to detect and respond to security incidents and audit the security of systems and applications
  • Security Training & Awareness: Provide guidance and training to other teams on security best practices, secure coding techniques, and threat mitigation strategies
  • Tooling & Infrastructure: Select, deploy, and manage security tools and frameworks for automated security testing, vulnerability scanning, and threat detection
What we offer
What we offer
  • competitive compensation and benefits
  • casual work environment
  • opportunities for career growth
Read More
Arrow Right