CrawlJobs Logo

Senior Security Engineer - Application Security

United States, New York 150000.00 - 185000.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

This is an opportunity to join K's critical InfoSec team as a Senior Security Engineer and operate with foresight in protecting our infrastructure, applications, cloud security, and customer trust. As a lean team, we span across multiple areas such as AppSec, CloudSec, SecOps, ITSec, and Compliance and apply it towards reading and interpreting architecture, or planning and building out net new security solutions. You will have the autonomy to define and implement cutting-edge security solutions across our entire technical ecosystem, ensuring our innovative work remains robust and compliant against evolving global threats. This role is crucial for establishing and maintaining a world-class security posture, particularly within the sensitive and highly regulated healthcare technology space.

Job Responsibility

  • Lead the development and implementation of robust application security protocols throughout the entire Software Development Lifecycle (SDLC)
  • Design, deploy, and continuously monitor cloud security architecture across our cloud environments, ensuring performance and resilience
  • Manage the security posture of K’s core IT infrastructure, internal networks, and perimeter defenses, mitigating threats before they impact operations
  • Ensure adherence to relevant healthcare regulatory and compliance requirements (e.g., HIPAA, GDPR, etc.) across all product lines and systems
  • Conduct proactive vulnerability assessments, penetration tests, and security reviews to identify and remediate potential weaknesses in our platforms
  • Collaborate with engineering teams to integrate security tools and practices into continuous integration/continuous deployment (CI/CD) pipelines

Requirements

  • 5+ years of experience in Information Security, Cloud Security, IT Security, and/or Application Security
  • Strong expertise in cloud technology (AWS, GCP, or Azure), modern programming languages, utilization of generative coding utilities, and the security implications of utilizing AI code development utilities
  • Demonstrated experience researching, establishing, and successfully rolling out enterprise-wide security policies and guidelines
  • Proven experience establishing a cutting-edge security posture, particularly within the regulated healthcare technology field
  • Excellent communication skills, capable of translating complex security risks into clear, actionable advice for technical and non-technical stakeholders
  • Expertise in compliance, security, and regulatory areas such as
  • HIPAA, PHI, AKS, SOC 2, ISO, GDPR, etc.
  • Flexibility in covering a rotation for critical on-call support responsibilities

Nice to have

  • Exploring, partnering and implementing bleeding edge tech not readily available to others
  • Experience with specific tools and tech K uses including but not limited to: Datadog, Sumologic, Torq, flare.io, GCP, Entitle, Okta, Orca, FlowSec, Prisma

What we offer

  • Hybrid work schedule with weekly lunches and stocked fridges
  • Monthly social committees for company events
  • 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days
  • Stock options for every full-time employee
  • Paid parental leave
  • 401k benefit
  • Commuter Benefits
  • Competitive health, dental, and vision insurance options

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Security Engineer - Application Security

8 matching positions

Senior Security Engineer, Application Security

Application Security enables 1Password to build and deliver secure products with...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of career experience in IT or Engineering with a security focus
  • Passion for and strong experience with any of: bug bounty programs, vulnerability research, validation, remediation or pentesting
  • Experience with internal tool development and engineering enablement
  • Strong foundational understanding of software development principles, and are comfortable reading and writing code
  • Work well in a team environment with positive communications amongst a variety of technical and non-technical stakeholders
  • Comfortable owning and setting technical direction for small to medium sized initiatives
  • Adaptable and resilient, thriving in fast-paced environments with shifting priorities
Job Responsibility
Job Responsibility
  • Design, build, integrate and scale new security solutions to power our vulnerability management program
  • Develop and maintain tools that correlate, enrich, and prioritize security vulnerability findings from multiple data sources
  • Develop and maintain comprehensive dashboards and reporting metrics around our vulnerability management program, tailored to different audiences (technical, non-technical, compliance, senior leadership, etc.)
  • Conduct detailed analysis used to inform security development teams to eliminate classes of vulnerabilities
  • Partner with product and development teams to improve vulnerability triage workflows, validate findings, and come up with remediation strategies consistent with good user experiences
  • Contribute to the design of risk-scoring and SLA models that align with business priorities
  • Mentor other engineers and help shape the evolution of our vulnerability management strategy
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k/RRSP
  • Generous PTO policy
  • Equity grant
  • Incentive programs
  • Maternity and parental leave top-up programs
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application Security

We are hiring a Senior Application Security Engineer to join Turnkey's team and ...
Location
Location
Salary
Salary:
Not provided
turnkey.com Logo
Turnkey
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelors degree in Computer Science, Engineering, or a related field
  • 5+ years of experience in application or product security, ideally in fast-moving, high-impact or crypto-native environments
  • Strong understanding of web, mobile, and cryptographic security fundamentals (e.g. OWASP Top Ten, SANS/CWE Top 25)
  • Proficiency in programming and scripting languages (Typescript/Javascript, Go, Rust) and experience building secure systems from the code up
  • Hands-on experience with security testing tools and methodologies (static/dynamic analysis, pen testing, etc.)
  • Strong understanding of cloud, containerized, and runtime environments (AWS, GCP, Docker, Kubernetes), with the ability to embed security early in the SDLC
  • Excellent analytical, problem-solving, and communication skills, with a collaborative mindset for partnering across product and infrastructure teams
  • Curious, proactive, and passionate about building secure, reliable systems in a fast moving startup environment
  • A builder mentality
  • comfortable operating with ambiguity, tackling incomplete systems, and applying hands-on engineering experience to security challenges.
Job Responsibility
Job Responsibility
  • Partner with Product and Engineering at both the design and development stage to ensure that we implement new features securely, including (but not limited to): Participating in the implementation efforts
  • Doing security reviews
  • Helping with product design decisions
  • Auditing and surfacing vulnerabilities in our current products
  • Conducting threat modeling and security assessments for new features and systems, identifying risks early and shaping secure architectural decisions
  • Developing and improving our Automated Tooling: further enhancing our automated tooling to scale our product security capabilities and find potential code problems both before and after we deploy
  • Making the safe way, the easy way: work on defining and building application guardrails so that developers can build securely by default
  • Investigating and remediating security issues, including vulnerabilities and incidents, and drive long-term improvements to prevent recurrence
  • Embedding a culture of secure development across engineering, defining practices that influence how Turnkey builds, deploys, and maintains systems at scale.
What we offer
What we offer
  • Full benefits, including medical, dental, vision, life, disability, HSA/FSA, 401(k)
  • Paid parental leave
  • Unlimited PTO
  • $3,000/yr learning and development budget to attend industry conferences
  • Multiple team offsites per year
  • Macbook Pro laptop
  • Lunch stipend (for those physically in the New York City office)
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application & Platform Security

The security team is responsible for and committed to securing all things Sentry...
Location
Location
Canada , Toronto
Salary
Salary:
200000.00 - 295000.00 CAD / Year
sentry.io Logo
Sentry
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of industry experience designing, building, and supporting large-scale distributed systems in production
  • Strong fundamentals in computer science skills
  • Experience in securing container based environments in cloud platforms (e.g., AWS, Azure, GCP) and their SDKs/APIs
  • Degree in Computer Science or related field
  • Experienced and comfortable programming in at least one language, with a strong preference for Python, Go, or Rust
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations
  • An up to date understanding of the threat landscape as it pertains to SaaS companies
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Lead highly impactful initiatives to solve critical security challenges, from idea formulation to design and implementation
  • Work on cross company objectives to influence and achieve security objectives
  • Research and evaluate new technologies to enhance the company's security posture with an eye towards scalability
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them
  • Enable cross-functional teams to implement security solutions aligned with Secure-by-Design concepts and standards
What we offer
What we offer
  • incentive compensation
  • equity grants
  • paid time off
  • group health insurance coverage
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application & Platform Security

The security team is responsible for and committed to securing all things Sentry...
Location
Location
United States , San Francisco
Salary
Salary:
190000.00 - 280000.00 USD / Year
sentry.io Logo
Sentry
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of industry experience designing, building, and supporting large-scale distributed systems in production
  • Strong fundamentals in computer science skills
  • Experience in securing container based environments in cloud platforms (e.g., AWS, Azure, GCP) and their SDKs/APIs
  • Degree in Computer Science or related field
  • Experienced and comfortable programming in at least one language, with a strong preference for Python, Go, or Rust
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations
  • An up to date understanding of the threat landscape as it pertains to SaaS companies
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Lead highly impactful initiatives to solve critical security challenges, from idea formulation to design and implementation
  • Work on cross company objectives to influence and achieve security objectives
  • Research and evaluate new technologies to enhance the company's security posture with an eye towards scalability
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them
  • Enable cross-functional teams to implement security solutions aligned with Secure-by-Design concepts and standards
What we offer
What we offer
  • incentive compensation
  • equity grants
  • paid time off
  • group health insurance coverage
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Application & Platform Security

The security team is responsible for and committed to securing all things Sentry...
Location
Location
Austria , Vienna
Salary
Salary:
112000.00 - 146000.00 EUR / Year
sentry.io Logo
Sentry
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of industry experience designing, building, and supporting large-scale distributed systems in production
  • Strong fundamentals in computer science skills
  • Experience in securing container based environments in cloud platforms (e.g., AWS, Azure, GCP) and their SDKs/APIs
  • Degree in Computer Science or related field
  • Experienced and comfortable programming in at least one language, with a strong preference for Python, Go, or Rust
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations
  • An up to date understanding of the threat landscape as it pertains to SaaS companies
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Lead highly impactful initiatives to solve critical security challenges, from idea formulation to design and implementation
  • Work on cross company objectives to influence and achieve security objectives
  • Research and evaluate new technologies to enhance the company's security posture with an eye towards scalability
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them
  • Enable cross-functional teams to implement security solutions aligned with Secure-by-Design concepts and standards
What we offer
What we offer
  • incentive compensation
  • equity grants
  • paid time off
  • group health insurance coverage
  • Fulltime
Read More
Arrow Right

Senior Application Security / Product Security Engineer

We are seeking an experienced Application Security / Product Security Engineer t...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
Galaxy Office Automation Pvt. Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of Application Security and Product Security principles
  • Experience with secure SDLC practices
  • Hands-on experience performing security testing for Web applications, APIs, Mobile apps, Thick client applications
  • Knowledge of cloud platforms (AWS / Azure / GCP) and cloud security architecture
  • Experience performing security design reviews and threat modeling
  • Familiarity with OWASP Top 10, API Security Top 10, and common vulnerability classes
  • Experience using security tools such as SAST, DAST, SCA
  • API testing tools
  • Good working knowledge of Excel for tracking vulnerabilities, metrics, and reporting
  • Strong task management and stakeholder coordination skills
Job Responsibility
Job Responsibility
  • Integrate security practices into the Software Development Lifecycle (SDLC)
  • Perform application security design reviews for new and existing products
  • Conduct manual and automated security testing of Web applications, REST / GraphQL APIs, Mobile applications (Android / iOS), Thick client / desktop applications
  • Identify vulnerabilities such as OWASP Top 10, authentication issues, authorization flaws, and API security risks
  • Review cloud architecture and deployments (AWS, Azure, GCP) for security best practices
  • Work with development teams to prioritize and remediate vulnerabilities
  • Perform threat modeling and security architecture assessments
  • Track vulnerabilities, remediation status, and risk metrics using Excel or vulnerability management tools
  • Support secure coding practices and developer security awareness
  • Manage multiple security assessments and coordinate tasks across teams
  • Fulltime
Read More
Arrow Right

Senior Security Engineer and Principal Security Engineer

The Microsoft Windows Security team is looking for a learn-it-all security engin...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check upon hire/transfer and every two years thereafter
  • 2+ years identifying vulnerabilities in operating systems and/or native (C/C++) applications
  • 5+ years of experience in a software engineering or security-related engineering
  • Demanstrated experience in security research, especially around vulnerability discovery
  • Experience exploiting bugs and bypassing security mitigations in operating systems
  • Familiarity with Microsoft Windows architecture
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right
New

Senior Application Security Engineer

We are seeking an experienced Application Security Engineer to join our team tha...
Location
Location
Egypt , Cairo
Salary
Salary:
Not provided
coca-colahellenic.com Logo
Coca-Cola HBC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in information security and 2+ years in software development
  • Bachelor’s degree in computer science, Information Security, or related field, or equivalent
  • At least one Cyber Security related certification, (e.g. ISC2 CISSP, EC-Council CEH, ISACA’s CSX, Microsoft Azure Security Associate, AWS Certified Security Specialty)
  • Any Application Security certification, (e.g. EC-Council CASE, ISC2 CSSLP, OffSec OWSA, GIAC CWAD)
  • Dedicated and proactive, finding opportunities and leading initiatives independently
  • Deep understanding of enterprise, cloud and cloud-native architectures and their secure design
  • Skilled in multiple programming languages (e.g., .NET, JavaScript, Python)
  • Proven expertise in guiding security development and code evaluations and providing actionable, risk-based technical recommendations
  • Knowledge of application security best practices such as OWASP Top 10, OWASP SAMM/DSOMM, OWASP ASVS/MASVS
  • Expertise in network and web protocols (TCP/IP, TLS, HTTPS, OAuth 2.0, OpenID Connect) and common attack vectors
Job Responsibility
Job Responsibility
  • Advance the application security strategy through multi-functional initiatives and cultural influence
  • Lead security initiatives across the SDLC and improve development practices through scalable automation
  • Conduct and guide security requirements and threat modeling early in design phases
  • Partner with product management, platform engineering, development and cyber defense teams to align business goals with security needs
  • Lead security architecture, design and code reviews
  • Perform hands-on security testing to identify risks and drive remediation with development teams
  • Drive software supply chain security practices to ensure protection against code, build, and artifact tampering across the CI/CD pipeline
  • Balance business and security risks through technically grounded, pragmatic recommendations
  • Translate lessons learned into reusable organizational assets that enhance overall security posture
  • Mentor engineers and practitioners, promoting secure-by-default thinking and shared accountability
What we offer
What we offer
  • Coaching and mentoring programs
  • Development opportunities
  • Equal opportunity employer
  • Learning programs
  • Work with iconic brands
  • Supportive team
  • Volunteering Opportunities
  • Wellbeing program
  • Fulltime
Read More
Arrow Right