Application Security Engineer (REMOTE)

• About Our Client:

The organization operates within the cybersecurity and industrial technology sector, focusing on addressing application security challenges across software, platforms, and development processes. By collaborating closely with multiple internal teams, the program ensures compliance with evolving cybersecurity frameworks and regulatory standards, supporting secure software development and operational practices. The organization’s efforts contribute to maintaining the integrity and resilience of critical applications in complex environments.

• About the Opportunity:

The Application Security Engineerplays a key role in enhancing the security posture of applications and platforms by integrating security practices throughout the software development lifecycle. This position works closely with software engineers, DevOps, and cybersecurity teams to identify vulnerabilities, implement secure coding standards, and ensure adherence to regulatory and compliance requirements. The role directly influences the organization’s ability to manage risk, respond to security threats, and maintain compliance frameworks, making it essential to safeguarding critical technology assets.

• Responsibilities:

• Act as a liaison between cybersecurity and development teams to embed security into design, development, deployment, and operations

• Conduct application security assessments, code reviews, API testing, threat modeling, and penetration testing

• Define, maintain, and enforce secure coding standards and best practices

• Integrate and manage security tools within CI/CD pipelines, including SAST, DAST, SCA, IaC scanning, and container security

• Support secure architecture reviews for cloud-native applications, microservices, and containerized workloads

• Perform threat modeling, risk assessments, and security architecture reviews for applications

• Ensure compliance with regulatory and security frameworks (e.g., NIST CSF, ISO 27001, IEC 62443)

• Develop and deliver cybersecurity training to development teams

• Stay current on emerging threats and incorporate threat intelligence into defenses

• Monitor and respond to application security threats, incidents, and vulnerabilities

• Manage third-party vendor and consultant relationships

• Perform other assigned duties

• Requirements:

• Active passport and willingness to travel internationally (up to 15%)

• Preferred degree in Computer Science, Information Systems, Cybersecurity, or related technical field

• Minimum 5 years in Information Security with at least 3 years focused on application security, secure development, or DevSecOps

• Strong knowledge of OWASP Top 10, OWASP ASVS, SANS Top 25, and secure SDLC methodologies

• Hands-on experience with application security testing tools such as Burp Suite, Fortify, Checkmarx, Veracode, and ZAP

• Experience in threat modeling, penetration testing, and secure software development

• Practical knowledge of cloud platforms (AWS or Azure) and cloud-native security controls

• Familiarity with Kubernetes security, container hardening, and runtime protection

• Strong communication skills to influence and collaborate with technical and non-technical teams

• Relevant certifications preferred (e.g., CISSP, CSSLP, OSCP, GWAPT, CEH, GIAC Cloud Security)

• Problem-solving and project management skills

• Ability to analyze data, resources, and schedules for decision-making

• Pay Range and Compensation Package:

• Base Salary Range: $117,200.00 - $146,600.00 per year

• Compensation may vary based on applicant''s work experience, education level, skill set, and/or location

Equal Opportunity Statement:

Equal Opportunity Statement: Our client is an equal opportunity employer. They celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, or national origin.

Note:

RemoteHunter is not the Employer of Record (EOR) for this role. Our purpose in this opportunity is to connect exceptional candidates with leading employers. We help job seekers worldwide discover roles that match their goals and guide them to complete their full application directly through the hiring company’s career page or ATS.