Senior Application Security Engineer [Remote-US] jobs in United States
cer-icon
Apply on Employer Site
company-logo

Quanata · 5 days ago

Senior Application Security Engineer [Remote-US]

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$220K/yr - $350K/yr
date6+ years exp

Quanata is on a mission to help ensure a better world through context-based insurance solutions. The Senior Application Security Engineer will serve as the primary partner for web and backend engineering teams, embedding security best practices throughout the software development lifecycle and addressing complex security challenges across product surfaces.

AnalyticsArtificial Intelligence (AI)Big DataFinTechInformation TechnologySoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Partner with one product portfolio to facilitate overall product security management, emphasis on AI/ML-specific security concerns and cross-functional work with data science teams
Perform security design reviews and threat modeling on APIs, web features, and service integrations, including integrating SAST, SCA, and DAST tools into CI/CD pipelines
Support secure development practices across security champions and engineering
Review source code and deployment configurations for security vulnerabilities
Collaborate with developers to triage, fix, and validate vulnerability findings
Participate in cross-functional incident response and remediation planning
Draft and maintain AppSec guidance for engineering teams and security champions
Contribute to security awareness and enablement across the engineering org
Develop AppSec related integrations and deployments of automation solutions (ASVS scanning, burpsuite enterprise)
Support application security integration reviews, saas security assessments, oss reviews

Qualification

Application SecuritySecure CodingThreat ModelingCode Scanning ToolsJavaScript/TypeScriptNode.jsAPI SecurityClear CommunicationCollaborationProblem Solving

Required

Bachelor's degree or equivalent relevant experience
6 - 8 years of experience in application security or full-stack development with security expertise
Strong understanding of secure coding in JavaScript/TypeScript, Node.js, and web standards
Familiar with application risk and vulnerabilities (OWASP Top 10, API Security, SSRF, etc.)
Experience with code scanning tools (e.g., CodeQL, Semgrep, SonarQube, Snyk)
Comfortable reading and debugging complex codebases across the stack
Clear and thoughtful communicator with the ability to guide engineers at all levels

Preferred

Experience with GraphQL security
Participation in security champions programs or secure SDLC rollouts
Contributions to open-source security tooling
Familiarity with infrastructure-as-code and container security

Benefits

Medical
Dental
Vision
Life insurance
Supplemental income plans for you and your dependents
A Headspace app subscription
Monthly wellness allowance
A 401(k) Plan with a company match
Paid Time Off
Up to $5000 each year for professional learning, continuing education and career development
LinkedIn Learning subscriptions
Access to multiple different coaching opportunities through BetterUp

Company

Quanata

twittertwitter
Glassdoor4.6
company-logo
Quanata is on a mission to help ensure a better world through context-based insurance solutions.
dateFounded in 2015
location
San Francisco, California, USA
people-size201-500 employees
web-link
https://www.blueowl.xyz

H1B Sponsorship

Quanata has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (2)
2023 (7)
2022 (11)
2021 (12)
2020 (8)

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Kathryn Vandiver
Vice President Of Engineering
linkedin
Company data provided by crunchbase