Senior Application Security Engineer

Glassdoor is becoming the leading community for workplace conversations, fostering radical transparency.
$92,000 - $115,000
Security
Senior Software Engineer
Remote
5+ years of experience
Cybersecurity
This job posting may no longer be active. You may be interested in these related jobs instead:
Security Engineer III - Java & Cloud

Senior Security Engineer role at JPMorgan Chase focusing on Java and cloud security solutions, requiring 2+ years of experience in security engineering and cloud technologies.

Senior Security Manager - Technology Risk and Controls (all genders)

Senior Security Manager role at JPMorgan Chase focusing on technology risk management and cybersecurity controls in Berlin, Germany.

Software Engineering & Architecture | Cybersecurity Event - Columbus, OH

Senior Security Engineer/Architect role at JPMorgan Chase focusing on cybersecurity solutions and controls implementation within the Technology Controls organization.

Python Developer - Lead Security Engineer (Firmwide Resiliency)

Lead Security Engineer position at JPMorgan Chase focusing on cybersecurity, technology controls, and secure software development using Python and security tools.

Sr. Security Engineer

Senior Security Engineer position at Disney focusing on application security, vulnerability management, and secure software development practices in a remote work environment.

Description For Senior Application Security Engineer

As a Sr Application Security Engineer at Glassdoor, you will be improving Glassdoor's application security posture and keeping our platform safe for millions of customers around the world. We are looking for someone who loves to analyze, test and triage application vulnerabilities, manage our public bug bounty program, participate in code and product security reviews, and help our Developers bake security into their day-to-day workflows and CICD. You will partner closely with our Product and Engineering teams, our vendors, and external testers, so solid interpersonal skills are a must. This role is a great opportunity to advance an application security program and drive remediation of security weaknesses with an enterprise-wide impact!

Key Responsibilities:

  • Be an advocate for application security within the organization
  • Develop and maintain a risk-based application security program
  • Enhance and manage Glassdoor's public bug bounty program and security tools
  • Find common patterns in application vulnerabilities and address root causes
  • Participate in strategic decisions related to application security
  • Execute security-focused code, architecture, and integration reviews
  • Coordinate or conduct penetration testing and drive remediation efforts
  • Keep abreast of the latest security issues and technologies
  • Improve process and procedural documentation
  • Participate in on-call rotation for Security Operations alert response

Requirements:

  • 5+ years of experience in web application penetration testing or security-focused application development
  • Deep knowledge of Cybersecurity Framework, crypto, authentication, and authorization protocols
  • Ability to read and understand Java, JavaScript, and Python
  • Outstanding communication skills
  • Ability to work in a diverse, fast-paced environment and collaborate across teams

Glassdoor offers a competitive compensation package, including base salary, annual bonus, RSUs, and comprehensive benefits. They are committed to diversity, equity, and inclusion, and offer a flexible work environment with a remote-first policy.

Join Glassdoor to help make worklife better for millions of professionals worldwide!

Last updated 7 months ago

Responsibilities For Senior Application Security Engineer

  • Improve application security posture
  • Manage public bug bounty program
  • Participate in code and product security reviews
  • Analyze, test, and triage application vulnerabilities
  • Develop and maintain risk-based application security program
  • Execute security-focused code, architecture, and integration reviews
  • Coordinate or conduct penetration testing
  • Improve process and procedural documentation
  • Participate in on-call rotation for Security Operations

Requirements For Senior Application Security Engineer

Java
JavaScript
Python
  • 5+ years of experience in web application penetration testing or security-focused application development
  • Deep knowledge of Cybersecurity Framework, crypto, authentication, and authorization protocols
  • Ability to read and understand Java, JavaScript, and Python
  • Outstanding communication skills
  • Ability to work in a diverse, fast-paced environment and collaborate across teams

Benefits For Senior Application Security Engineer

Equity
  • Open Paid Time Off policy
  • 15-20 paid company holidays/year
  • Flexible hours
  • Where-to-work policy
  • Annual bonus
  • Restricted Stock Units (RSU)

Interested in this job?