Senior Application Security Engineer [Remote-US] jobs in United States
cer-icon
Apply on Employer Site
company-logo

ExecutivePlacements.com · 9 hours ago

Senior Application Security Engineer [Remote-US]

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$220K/yr - $350K/yr
date6+ years exp

Quanata is on a mission to help ensure a better world through context-based insurance solutions. As a Senior Application Security Engineer, you will serve as the primary partner for web and backend engineering teams, helping embed security best practices throughout the software development lifecycle.

Human ResourcesOnline PortalsRecruiting

Responsibilities

Partner with one product portfolio to facilitate overall product security management, emphasis on AI/ML-specific security concerns and cross-functional work with data science teams
Perform security design reviews and threat modeling on APIs, web features, and service integrations, including integrating SAST, SCA, and DAST tools into CI/CD pipelines
Support secure development practices across security champions and engineering
Review source code and deployment configurations for security vulnerabilities
Collaborate with developers to triage, fix, and validate vulnerability findings
Participate in cross-functional incident response and remediation planning
Draft and maintain AppSec guidance for engineering teams and security champions
Contribute to security awareness and enablement across the engineering org
Develop AppSec related integrations and deployments of automation solutions (ASVS scanning, burpsuite enterprise)
Support application security integration reviews, saas security assessments, oss reviews

Qualification

Application SecuritySecure CodingThreat ModelingCode Scanning ToolsJavaScript/TypeScriptNode.jsAPI SecurityClear CommunicationCollaborationProblem Solving

Required

Bachelor's degree or equivalent relevant experience
6-8 years of experience in application security or full-stack development with security expertise
Strong understanding of secure coding in JavaScript/TypeScript, Node.js, and web standards
Familiar with application risk and vulnerabilities (OWASP Top 10, API Security, SSRF, etc.)
Experience with code scanning tools (e.g., CodeQL, Semgrep, SonarQube, Snyk)
Comfortable reading and debugging complex codebases across the stack
Clear and thoughtful communicator with the ability to guide engineers at all levels

Preferred

Experience with GraphQL security
Participation in security champions programs or secure SDLC rollouts
Contributions to open-source security tooling
Familiarity with infrastructure-as-code and container security

Benefits

Medical
Dental
Vision
Life insurance
Supplemental income plans for you and your dependents
A Headspace app subscription
Monthly wellness allowance
A 401(k) Plan with a company match
A one-time payment of $2K will be provided to cover the purchase of in-home office equipment and furniture
Four weeks of PTO in their first year of employment
Twelve weeks of fully paid parental leave
Up to $5000 each year for professional learning, continuing education and career development
LinkedIn Learning subscriptions
Access to multiple different coaching opportunities through BetterUp

Company

ExecutivePlacements.com

twittertwittertwitter
company-logo
Online recruitment
dateFounded in 2011
location
Johannesburg, NA - South Africa, ZAF
people-size11-50 employees
web-link
https://executiveplacements.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase