Application Security Engineer (Senior) ID71672

AgileEngine

$120K — $150K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 6+ years of software engineering experience with a focus on Application Security and DevSecOps
  • Proficiency in Python for automation and scripting, and Java for reading and reviewing code
  • Experience deploying and tuning SAST, DAST, and SCA tools within CI/CD pipelines
  • Capability to work autonomously and create automated security runbooks
  • Upper-intermediate proficiency in English for effective communication

Responsibilities

  • Engineer and implement AI-enabled secure code scanning systems
  • Automate secure coding patterns to align with SDLC workflows
  • Architect integration of continuous security scanning tools into CI/CD pipelines
  • Review complex application code to provide remediation guidance
  • Develop and maintain security-focused runbooks from scratch

Benefits

  • Professional growth opportunities through mentorship and TechTalks
  • Education, fitness, and team activity budgets to support well-being
  • Work on exciting projects with major Fortune 500 companies
  • Flexible work schedule options with remote and office choices
Full Job Description
Job Description

ABOUT THE ROLE

We are looking for a Senior Application Security Engineer to architect and build automated security layers within the SDLC, engineering AI-enabled secure code scanning, hardened baseline automation, and CI/CD security tooling integration across a large-scale financial services program. You will work in Python and Java to deploy and tune SAST, DAST, and SCA tools, provide code-level remediation guidance to development teams, and operate with full autonomy building automated security runbooks. The role requires 6+ years of software engineering experience with a strong AppSec and DevSecOps focus.

WHAT YOU WILL DO

- Engineer and deploy AI-enabled secure code scanning capabilities and "Golden Images" to drive secure-from-the-start adoption;

- Automate the development of secure coding patterns and integrate them with traditional and Agentic SDLC workflows;

- Architect the integration of continuous security scanning tools (SAST, DAST, SCA) into enterprise CI/CD pipelines, tuning them to eliminate noise;

- Act as a senior technical SME, reading and reviewing complex application code (Java/Python) to provide software engineers with highly specific, code-level remediation guidance.

MUST HAVES

- You must be authorized to work for ANY employer in the US (e.g., Green card holders, TN visa holders, GC EAD, H4 EAD, U4U with EAD), as we are unable to sponsor or take over employment visa sponsorship at this time;

- 6+ years of software engineering experience with a strong subsequent focus on Application Security and DevSecOps;

- Strong coding and architectural proficiency in Python (for security automation and scripting) and/or Java (to confidently read, review, and secure enterprise source code);

- Deep, hands-on expertise deploying and tuning modern application security testing tools (SAST, DAST, SCA) and integrating them into complex CI/CD orchestration ecosystems;

- Fully autonomous execution capability, requiring no daily supervision to map out and build automated security runbooks;

- Upper-intermediate English level.

NICE TO HAVES

- Experience integrating LLMs, AI agents, or automated coding assistants to streamline vulnerability triaging or secure code generation;

- Advanced application threat modeling experience.

PERKS AND BENEFITS

- Professional growth: Mentorship, TechTalks, and personalized growth roadmaps.

- Competitive compensation: USD-based pay with education, fitness, and team activity budgets.

- Exciting projects: Modern solutions with Fortune 500 and top product companies.

- Flextime: Flexible schedule with remote and office options.

Similar Jobs

More Jobs at AgileEngine

More Information Technology Jobs

Find similar Application Security Engineer (Senior) ID71672 jobs: