Senior Application Security Engineer
Description For Senior Application Security Engineer
CLEAR, a leading identity platform with over 27 million members worldwide, is seeking a Senior Application Security Engineer to join their security team. This role presents an exciting opportunity to work at the intersection of biometric and web security, focusing on both testing and remediation while creating automated security products.
The position requires a seasoned professional with at least 5 years of software development experience and 2 years of architecture experience. You'll be responsible for conducting comprehensive security assessments, implementing robust security measures, and leading penetration testing efforts across CLEAR's critical assets. The role combines technical expertise with leadership, requiring you to partner with various teams including Product, Software Engineering, and DevOps.
As a Senior Application Security Engineer, you'll play a crucial role in building and maintaining CLEAR's security-first culture. You'll work with cutting-edge security tools and technologies, implementing automated security testing as part of the CI/CD pipeline. The position offers exposure to various aspects of security, from mobile platform security to compliance with industry standards like PCI and NIST 800-53.
CLEAR offers an attractive compensation package with a base salary range of $170,000 - $215,000, comprehensive benefits including healthcare, 401(k) with employer match, and equity through Restricted Stock Units. The company provides a supportive work environment with opportunities for professional development, making it an ideal place for security professionals looking to make a significant impact in a growing organization.
The role combines technical challenges with the opportunity to shape security practices at a company that's transforming how people live, work, and travel. If you're passionate about application security and want to work on solutions that affect millions of users daily, this position offers the perfect blend of challenge, impact, and growth potential.
Responsibilities For Senior Application Security Engineer
- Partner with Product, Software Engineering, DevOps, and IT teams
- Perform security risk assessments, manual penetration testing, and automate security testing
- Deliver security products and consult with DevOps for automated security testing in CI/CD pipelines
- Lead internal and external penetration tests across critical assets
- Develop functional and non-functional security requirements
- Conduct security assessments, code reviews, and penetration tests
- Implement and manage security tools including SAST, DAST, SCA
Requirements For Senior Application Security Engineer
- 5+ years of experience in software development and SDLC processes
- 2+ years relevant architecture experience
- Knowledge of OWASP Top 10 or CWE Top 25
- Excellent interpersonal communication skills
- Strong understanding of Software Security Architecture, SDLC, and CI/CD
- Experience with security tools (DAST, SAST, IAST, RASP, WAF)
- Familiarity with industry standards (PCI, NIST 800-53, FedRAMP, ISO27001)
- Programming experience in Python, BASH, Go, Java, JavaScript
- Experience with security testing tools (Burp Suite, Metasploit, OWASP ZAP)
- Experience with mobile platform security for iOS & Android
Benefits For Senior Application Security Engineer
- Comprehensive healthcare plans
- Family building benefits (fertility and adoption/surrogacy support)
- Flexible time off
- Free OneMedical memberships for employees and dependents
- 401(k) retirement plan with employer match
- Annual bonuses
- Restricted Stock Units
- Meals and snacks in office
- Learning & development stipend
Jobs Related To CLEAR Senior Application Security Engineer
