Apply on Employer Site

Magnet Forensics · 22 hours ago

Senior Application Security Engineer

United States

Full-time

Remote

Senior Level

$150K/yr - $200K/yr

5+ years exp

Magnet Forensics is seeking a highly skilled and motivated Senior Application Security Engineer to join their dynamic team. The role involves implementing, managing, and enhancing security measures across applications, products, and services to protect against cyber threats and attacks.

Cyber SecurityInformation TechnologyLaw EnforcementProductivity ToolsSoftware

Hiring Manager

Rachel Ko

Responsibilities

Design, implement, and maintain application security processes and tooling such as SAST, SCA, containers, etc

Collaborate with software developers and system administrators to review and improve the security architecture of new and existing applications, systems, and code. Familiarity with threat modelling, design reviews are helpful

Conduct regular security assessments, vulnerability scans, and web application scanning. Work with engineering teams on notification, remediation, and patching strategies

Monitor security events, analyze logs, and generate reports to identify suspicious activities, potential threats, and security breaches

Establish and enforce security policies, standards, and guidelines in alignment with industry best practices, legal requirements, and internal security policies

Design, implement, and maintain security infrastructure components in AWS and Azure such as Security Hub, Inspector, Config, Defender for Cloud

Qualification

Application SecuritySecurity ProtocolsCloud Security (AWS/Azure)Scripting LanguagesCI/CD IntegrationInfrastructure as CodeCertifications CISSPCertifications CISMCompliance FrameworksProblem-solvingCommunication SkillsInterpersonal Skills

Required

5+ years as a Security Engineer or in a similar role, demonstrating hands-on experience in implementing, and improving a security program

Strong knowledge of security protocols, cryptography, and common security technologies

Ability to automate security tasks and integrate with various CI/CD tooling and processes

Experienced with one or more scripting languages and reading basic scripts (Python, C#, PowerShell, Bash, or etc.)

Comfortable with writing pipelines for automation tasks (Jenkins, AzDO, GitLab, GitHub)

Strong familiarity writing IaC (CDK, CloudFormation, Terraform) with experience in deploying cloud workloads securely in either AWS or Azure and monitoring them for threats

Excellent problem-solving and analytical skills to identify and address security vulnerabilities effectively

Strong communication and interpersonal skills to collaborate with cross-functional teams and articulate complex security concepts to non-technical stakeholders

Degree or diploma in relevant field or equivalent work experience

Preferred

Experience in designing and building controls around AI usage in an engineering environment (models/technologies such as Claude Code/Bedrock/OpenAI/RAG/Txt&Img Classifiers/Agents/etc.)

Relevant certifications (e.g., CISSP, CISM, CompTIA Security+)

Experience with compliance frameworks (SOC2, ISO 27001, NIST 800-53, Fedramp, etc.)