Senior Application Security Engineer

Glassdoor is becoming the leading community for workplace conversations, fostering radical transparency.
$92,000 - $115,000
Security
Senior Software Engineer
Remote
5+ years of experience
Cybersecurity
This job posting may no longer be active. You may be interested in these related jobs instead:
Sr. Penetration Testing Engineer, AWS Penetration Testing

Senior Penetration Testing Engineer position at AWS Security conducting offensive security testing, vulnerability research, and threat emulation to protect AWS infrastructure.

Security Engineer, Corporate Services Security, Corporate Services Security

Senior Security Engineer role at Amazon's Corporate Services Security team, focusing on protecting corporate services and systems through threat modeling, secure code review, and security automation.

Application Security Engineer, AWS AppSec EC2

Senior Application Security Engineer role at AWS focusing on cloud security, threat modeling, and secure architecture design with competitive compensation and benefits.

Senior Software Engineering

Senior Software Engineering role at Microsoft working on Microsoft Entra (Azure Active Directory) authentication and security services.

Application Security Engineer, Amazon Application Security

Senior Application Security Engineer role at Amazon, focusing on application security reviews, secure architecture design, and threat modeling for Amazon's global security infrastructure.

Description For Senior Application Security Engineer

As a Sr Application Security Engineer at Glassdoor, you will be improving Glassdoor's application security posture and keeping our platform safe for millions of customers around the world. We are looking for someone who loves to analyze, test and triage application vulnerabilities, manage our public bug bounty program, participate in code and product security reviews, and help our Developers bake security into their day-to-day workflows and CICD. You will partner closely with our Product and Engineering teams, our vendors, and external testers, so solid interpersonal skills are a must. This role is a great opportunity to advance an application security program and drive remediation of security weaknesses with an enterprise-wide impact!

Key Responsibilities:

  • Be an advocate for application security within the organization
  • Develop and maintain a risk-based application security program
  • Enhance and manage Glassdoor's public bug bounty program and security tools
  • Find common patterns in application vulnerabilities and address root causes
  • Participate in strategic decisions related to application security
  • Execute security-focused code, architecture, and integration reviews
  • Coordinate or conduct penetration testing and drive remediation efforts
  • Keep abreast of the latest security issues and technologies
  • Improve process and procedural documentation
  • Participate in on-call rotation for Security Operations alert response

Requirements:

  • 5+ years of experience in web application penetration testing or security-focused application development
  • Deep knowledge of Cybersecurity Framework, crypto, authentication, and authorization protocols
  • Ability to read and understand Java, JavaScript, and Python
  • Outstanding communication skills
  • Ability to work in a diverse, fast-paced environment and collaborate across teams

Glassdoor offers a competitive compensation package, including base salary, annual bonus, RSUs, and comprehensive benefits. They are committed to diversity, equity, and inclusion, and offer a flexible work environment with a remote-first policy.

Join Glassdoor to help make worklife better for millions of professionals worldwide!

Last updated 7 months ago

Responsibilities For Senior Application Security Engineer

  • Improve application security posture
  • Manage public bug bounty program
  • Participate in code and product security reviews
  • Analyze, test, and triage application vulnerabilities
  • Develop and maintain risk-based application security program
  • Execute security-focused code, architecture, and integration reviews
  • Coordinate or conduct penetration testing
  • Improve process and procedural documentation
  • Participate in on-call rotation for Security Operations

Requirements For Senior Application Security Engineer

Java
JavaScript
Python
  • 5+ years of experience in web application penetration testing or security-focused application development
  • Deep knowledge of Cybersecurity Framework, crypto, authentication, and authorization protocols
  • Ability to read and understand Java, JavaScript, and Python
  • Outstanding communication skills
  • Ability to work in a diverse, fast-paced environment and collaborate across teams

Benefits For Senior Application Security Engineer

Equity
  • Open Paid Time Off policy
  • 15-20 paid company holidays/year
  • Flexible hours
  • Where-to-work policy
  • Annual bonus
  • Restricted Stock Units (RSU)

Interested in this job?