Senior Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Canary Technologies · 3 months ago

Senior Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date6+ years exp

Canary Technologies Corp is revolutionizing the hospitality industry with its AI-powered software platform, trusted by major hotel brands worldwide. They are seeking a Senior Application Security Engineer to embed security into the software development lifecycle, manage application security tooling, and collaborate with engineering teams to ensure a secure and scalable platform.

Enterprise SoftwareHospitalityHotelProductivity Tools
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Define and enforce best practices for secure coding, dependency management, and design reviews across engineering teams
Integrate and manage SAST, DAST, and SCA tools within CI/CD pipelines (e.g., GitHub Actions)
Partner with developers on new features and systems to identify risks early in the lifecycle
Implement best practices for secrets handling, API authentication/authorization, and data protection
Build security guidelines, training, and reusable libraries/patterns so that teams can ship secure code faster
Triage and prioritize findings from bug bounties, penetration tests, and automated scans, ensuring timely resolution
Act as the bridge between application developers and platform engineers to align app security with infra and compliance requirements
Implement monitoring, alerting, and remediation for security incidents across our platform
Scan and remediate vulnerabilities in container images, OS packages, dependencies, and IaC templates
Design and maintain least-privilege IAM roles, secrets management, and authentication flows
Automate evidence gathering and control enforcement for SOC 2, ISO 27001, and others

Qualification

Security engineeringDevSecOpsApplication security toolingWeb app securityAWS securityKubernetes securityProgramming skillsCommunication skillsTeamwork abilities

Required

6+ years in security engineering, DevSecOps, or related roles, including experience at scale
Excellent communication and teamwork abilities
Strong experience integrating security into modern SDLC pipelines
Hands-on with AppSec tooling (Snyk, OWASP ZAP, Burp Suite, SonarQube, Checkmarx, etc.)
Solid understanding of web app security (OWASP Top 10, API security, auth flows, input validation)
Familiarity with AWS/Kubernetes security
Strong programming skills (Python, Go, or JavaScript) to build tools, write secure code, and contribute to developer libraries
Proven track record in partnering with product and engineering teams to drive security adoption without slowing down velocity
Strong AWS security skills (IAM, KMS, Security Hub, GuardDuty, WAF)
Experience with Kubernetes security (RBAC, OPA/Gatekeeper, network policies)
Hands-on with Terraform, Helm, and GitOps practices
Familiarity with security tooling (Trivy, Falco, Snyk, Aqua)
Knowledge of networking, encryption, and cloud-native security best practices

Benefits

Canary Days: As a company we want to ensure that the team has time to recharge. Each month we provide company wide days off to ensure there is at least one extended weekend or day off.
Self Improvement Club: We meet each month and share our personal goals for the month. Each individual is provided a budget towards any purchases that help us achieve these goals.
Professional Development Chats: We provide budget to help drive cross functional professional development conversations across the organization.
Travel Reimbursement: Team members are able to visit our offices across New York, San Francisco or Dallas when they choose, and are provided a travel stipend for doing so. Spend time working with the team in their office, and use the rest of your time exploring a new city!
Personal Travel Reimbursement: If you stay at a hotel that Canary works with, we provide a credit towards your stay.

Company

Canary Technologies

twittertwitter
company-logo
Canary Technologies provides a digital guest management platform for hotels streamlining check-in, messaging, payments, and upsells.
dateFounded in 2017
location
San Francisco, California, USA
people-size201-500 employees
web-link
https://www.canarytechnologies.com

H1B Sponsorship

Canary Technologies has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2024 (1)
2023 (1)
2022 (1)
2021 (1)

Funding

Current Stage
Late Stage
Total Funding
$177M
Key Investors
Brighton Park CapitalInsight PartnersF-Prime
2025-06-12Series D· $80M
2024-06-12Series C· $50M
2022-10-27Series B· $30M

Leadership Team

leader-logo
SJ Sawhney
Co-Founder & President
linkedin

Recent News

PR Newswire
Canary Technologies Named to the 2025 Deloitte Technology Fast 500™
2025-11-19
EIN Presswire
Hotel Digital Market Drivers 2025-2029: Regional Outlook and Sizing Analysis
2025-11-14
PR Newswire
Canary Technologies Wins American Hotel & Lodging Association Tech Acceleration Award
2025-10-30
Company data provided by crunchbase