Sr. Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

OpenGov Inc. · 18 hours ago

Sr. Application Security Engineer

positionBoston, MA
timeFull-time
remoteOnsite
senioritySenior Level
money$140K/yr - $168K/yr
date6+ years exp

OpenGov Inc. is the leader in AI and ERP solutions for local and state governments in the U.S. The Senior Application Security Engineer is responsible for ensuring the security, integrity, and resilience of cloud-native SaaS applications by collaborating with various teams to embed security into every phase of the SDLC.

Data VisualizationEnterprise SoftwareGovTechSaaSSoftware
check
H1B Sponsor Likelynote

Responsibilities

Embed security into CI/CD pipelines through scalable guardrails, automated security checks, and continuous improvements to developer workflows
Drive adoption of secure coding best practices across engineering teams through tooling, guidance, and direct partnership
Lead threat modeling exercises for high-risk features and new architecture patterns
Own, maintain, and tune AppSec tooling including SAST, DAST, SCA, secrets scanning, container scanning, and dependency management
Partner with DevOps to ensure automated testing integrates into build, test, and deploy workflows with high signal-to-noise and minimal developer friction
Evaluate emerging technologies and automation opportunities to strengthen AppSec capabilities
Lead triage, prioritization, and root-cause analysis for application vulnerabilities discovered through internal testing, bug bounty programs, pentests, and external researchers
Ensure timely remediation through strong cross-functional partnership, driving the right balance of risk, velocity, and operational maturity
Support security reviews, pen test scoping, and remediation programs tied to GovRAMP, SOC 2, and customer requirements
Conduct manual reviews of critical code paths, APIs, backend services, and cloud components to identify security defects that automation may miss
Advise on secure design patterns for microservices, cloud-native architectures, authentication/authorization mechanisms, secrets management, and data protection
Collaborate with Security Operations during active incidents involving application or product vulnerabilities
Perform deep-dive analysis of new vulnerabilities, exploit techniques, frameworks, and supply-chain risks affecting our tech stack
Mentor engineering teams on secure design, secure coding, and modern AppSec patterns
Lead internal workshops, brown bags, and knowledge-sharing sessions
Contribute to internal AppSec documentation, policies, and secure development standards

Qualification

Application SecuritySecure DevelopmentThreat ModelingCI/CD IntegrationSAST/DAST/SCA ToolsMicroservices ArchitectureCloud SecurityCollaborationMentoringDocumentation

Required

6+ years of application security, secure development, or software engineering experience (or equivalent real-world experience)
Strong knowledge of modern application architectures: microservices, REST/GQL APIs, React/Node/Java/Kotlin/Go, containerized workloads, Kubernetes
Hands-on experience with SAST, DAST, SCA, secrets scanning, container scanning, and CI/CD integration
Expertise in OWASP Top 10, ASVS, SANS CWE Top 25, and secure coding principles
Ability to perform threat modeling, code review, and architecture analysis
Experience partnering with Engineering to drive remediation and long-term maturity improvements

Preferred

Experience in SaaS, multi-tenant systems, or high-scale cloud environments (AWS preferred)
Familiarity with SOC 2, GovRAMP, & TX-RAMP
Prior background in DevOps, software engineering, or cloud security

Company

OpenGov Inc.

twittertwittertwitter
Glassdoor3.8
company-logo
Our mission is to power more effective and accountable government.
dateFounded in 2012
location
San Francisco, California, USA
people-size501-1000 employees
web-link
http://opengov.com

H1B Sponsorship

OpenGov Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (25)
2024 (12)
2023 (10)
2022 (14)
2021 (4)
2020 (9)

Funding

Current Stage
Late Stage
Total Funding
$178M
Key Investors
Cox EnterprisesEmerson CollectiveAndreessen Horowitz
2024-02-27Acquired
2022-02-01Series Unknown· $50M
2019-09-02Series D· $51M

Leadership Team

leader-logo
Zac Bookman
CEO and Co-founder
linkedin
leader-logo
Paul Denton
Chief Financial Officer
linkedin

Recent News

EIN Presswire
City of Ellsworth, ME Advances Operational Modernization with OpenGov Public Service Platform
2026-01-06
vox
OpenGov Scores $15 Million as Andreessen Horowitz Invests
2025-12-29
Venturebeat
OpenGov has another $15M to show how governments spend your money
2025-12-29
Company data provided by crunchbase