Senior Product & Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Workiva · 1 day ago

Senior Product & Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$111K/yr - $178K/yr
date3+ years exp

Workiva is a company focused on ensuring the security of applications and cloud-based infrastructure. The Senior Product & Application Security Engineer partners with product and engineering teams to assess security, review code, and provide guidance on secure design and implementation.

AnalyticsBusiness Process Automation (BPA)Enterprise SoftwareGovernmentRisk ManagementSoftware
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Serves as a senior product and application security partner to engineering and product teams across the organization
Leads the application of security techniques threat modeling and secure design practices to protect applications cloud infrastructure and product environments
Contributes at a senior level within a team or matrixed environment influencing security strategy and execution
Tackles complex and ambiguous security problems requiring deep technical analysis and evaluation of multiple risk factors
Proactively identifies systemic security risks across products services and infrastructure
Designs and drives effective long term security solutions and remediation strategies across diverse product areas
Has significant impact on product security customer trust compliance and operational risk across multiple teams and initiatives
Exercises strong judgment in defining security priorities selecting scalable controls and balancing risk with business needs
Acts as a trusted security advisor to senior engineers technical leads and engineering managers
Regularly collaborates across product engineering platform and infrastructure teams to influence secure architecture and design decisions
Engages with senior internal stakeholders and may support discussions with directors and senior directors on security topics
Operates with a high degree of independence setting direction and priorities aligned with organizational security objectives
Owns security assessments risk evaluations and remediation efforts from discovery through resolution
Mentors and provides technical leadership to peers and partner teams

Qualification

JavaPythonJavaScript/TypeScriptApplication SecurityCloud SecurityOWASP Top 10Secure Code ReviewBurp SuitePenetration TestingDevSecOps ToolingCommunication SkillsMentoring

Required

3+ years of related experience with a Bachelor's degree or equivalent experience
3+ years of software development experience in at least one of the following languages: Java, Javascript/Typescript, Python, Go
Knowledge of security vulnerabilities, secure code review, and OWASP Top 10

Preferred

Deep knowledge of application security secure coding practices threat modeling and vulnerability classes including OWASP Top 10
Proven experience leading secure code reviews architecture reviews and security design discussions
Ability to communicate complex security concepts risks and recommendations to both technical and executive stakeholders
Experience using web application security testing tools such as Burp Suite
Strong understanding of cloud security concepts particularly in AWS based environments
Advanced web application penetration testing certifications such as OSWA OSWE OSCP BSCP eWTP GWAPT
Secure code review or application security certifications such as CASE Java or OSWE
Web Application Firewall WAF tuning and optimization experience
Hands on penetration testing experience across modern web applications
Familiarity with DevSecOps tooling such as Semgrep GitHub Advanced Security Trivy Grype or similar
Experience securing or evaluating AI driven systems and workflows

Benefits

A discretionary bonus typically paid annually
Restricted Stock Units granted at time of hire
401(k) match and comprehensive employee benefits package

Company

Workiva

twittertwittertwitter
Glassdoor4.3
company-logo
Workiva created Wdesk, a cloud-based platform for enterprises to collect, manage, report, and analyze critical business data in real time.
dateFounded in 2008
location
Ames, Iowa, USA
people-size1001-5000 employees
web-link
http://www.workiva.com

H1B Sponsorship

Workiva has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (4)
2024 (3)
2023 (1)
2022 (3)
2021 (1)
2020 (5)

Funding

Current Stage
Public Company
Total Funding
$680.58M
Key Investors
Bluestem Capital
2023-08-14Post Ipo Debt· $625M
2014-12-12IPO
2014-10-17Series Unknown· $0.69M

Leadership Team

leader-logo
Julie Iskow
President & CEO
linkedin
leader-logo
Penny Ashley Lawrence
SVP, CPX (Customer & Partner Experience)
linkedin

Recent News

PharmiWeb
ESG Reporting Market to Experience Notable Growth in Forecast Span by 2031
2026-01-07
The Motley Fool
4 Super Stocks at the Top of My Watch List for 2026
2025-12-31
thefly.com
Workiva appoints Barbara Larson as CFO
2025-12-11
Company data provided by crunchbase