Senior Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

BHG Financial ยท 2 weeks ago

Senior Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
date3+ years exp

BHG Financial is a leader in the financial services space, dedicated to providing innovative financial solutions to accomplished professionals and businesses. They are seeking a Senior Application Security Engineer to lead AppSec initiatives, focusing on vulnerability assessments and secure coding practices while collaborating with developers and security teams.

FinanceFinancial ServicesRisk Management
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Lead application vulnerability assessments using SAST, DAST, and SCA tools; validate and triage findings to ensure accuracy and actionable results
Support container and cloud-native security efforts, including scanning container images, assessing container configurations, and advising on secure container orchestration practices
Partner closely with developers and software engineers to prioritize, remediate, and prevent vulnerabilities across applications, dependencies, and codebases
Promote and reinforce secure coding practices through guidance, documentation, and hands-on collaboration
Define and communicate technical security requirements and guidelines for new initiatives, features, and architecture changes
Stay current with emerging security threats, trends, and research; recommend appropriate mitigation strategies and technology improvements
Work with compliance and technical teams to address deficiencies identified during assessments, audits, or regulatory examinations
Assist in generating, tracking, and reporting key metrics for leadership and security governance
Participate in Incident Response activities as needed
Participate in the security on-call support rotation as required

Qualification

Application SecuritySASTDASTSCA toolsContainer SecuritySecure Coding PracticesVulnerability AssessmentRisk AssessmentWeb Application VulnerabilitiesCyber Security CertificationsAnalytical ThinkingCommunication SkillsTeam CollaborationConfidentiality

Required

3+ years of experience in a technical security or IT role with a strong focus on application security
Hands-on experience with SAST, DAST, and SCA tools
Knowledge of container security concepts, including container image scanning, secure image pipelines, and common misconfigurations in containerized environments (Docker, Kubernetes, etc.)
Deep understanding of application security principles and secure development practices, including authentication, authorization, session management, input validation, secrets management, and API security
Strong familiarity with common web application vulnerabilities (e.g., XSS, CSRF, SQL injection, SSRF, insecure deserialization) and the ability to explain, validate, and reproduce them
Proven ability to provide actionable remediation guidance to developers and engineering teams, balancing risk with business and technical realities
Experience with vulnerability validation, risk assessment, and prioritization, particularly in complex environments with multiple applications and tech stacks
Working knowledge of broader security technologies and domains such as endpoint security, vulnerability management, network security, SIEM, MFA/IAM/PAM, PKI, security automation, cloud security controls, NAC, encryption, DLP, and firewalls
Ability to maintain strict confidentiality
Excellent writing, organizational, interpersonal and communication skills
Ability to think analytically and a high sense of urgency
Ability to look at all situations objectively and a love for challenging assumptions
Ability to work independently without supervision
Love for collaboration to build stronger teams and more efficient processes

Preferred

Bachelor's degree in IT, information security, or a related discipline
Cyber security certifications, including but not limited to GPEN, CISSP, OSWE, GWAPT

Benefits

Medical/Rx/Dental/Vision coverage for employees and their eligible family members
Competitive PTO and vacation policies
1 Friday off each month for Wellness Weekends
Company 401(k) plan with employer contributions after one year
Company-sponsored training and certification opportunities
Quarterly award ceremonies where top achievers are celebrated and receive additional bonuses
Ongoing volunteer opportunities to give back to the community through our BHG Cares program

Company

BHG Financial

twittertwittertwitter
Glassdoor4.1
company-logo
BHG Financial delivers forward-thinking financial solutions, custom-tailored for individuals, small businesses, and institutions.
dateFounded in 2001
location
Fort Lauderdale, Florida, USA
people-size1001-5000 employees
web-link
https://bhgfinancial.com

H1B Sponsorship

BHG Financial has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (23)
2024 (46)
2023 (22)
2022 (31)
2021 (32)
2020 (8)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Tyler Crawford
Chief Operating Officer
linkedin
leader-logo
Allison Laforce
Human Resources Business Partner II
linkedin

Recent News

Newswire
BHG Financial and Engine by Gen Enhance Partnership to Connect Well-Qualified Borrowers with High Dollar, Long Term Affordable Loans
2025-12-05
BiometricUpdate.com
AI agents are already on your site, Vouched says, introducing KYA tool to prove it
2025-10-23
Forbes.com
20 Pieces Of Timeless Financial Wisdom From Industry Mentors
2025-09-15
Company data provided by crunchbase