
Senior Application Security Engineer II
Spring Healthabout 4 hours ago
Base Salary
$180k - $206k/yr
Responsibilities
- Advance secure-by-design practices within the S-SDLC program.
- Mentor engineers on secure coding practices and AppSec fundamentals.
- Facilitate the development of an AI-assisted threat modeling program.
- Mature established SAST, SCA, and DAST programs through improvements.
- Perform security-focused code reviews of internal and open-source libraries.
- Support vulnerability remediation efforts and assess impact.
- Identify and implement process improvements and security automation.
- Contribute to security assessments of AI-integrated product features.
- Research and develop a Secure AI Development Lifecycle (ADLC).
- Evaluate and recommend AI-assisted security tooling.
Requirements
- 7+ years of experience in application security or related fields.
- Hands-on experience with DAST, SAST, and SCA tools.
- Experience securing CI/CD pipelines with various tooling.
- Familiarity with IaaS cloud infrastructure and container technologies.
- Security automation experience in Go, Python, JavaScript, or Ruby.
- Knowledge of AI/ML security concepts and risks.
- Experience implementing controls aligned to security frameworks.
- Strong collaboration skills with cross-functional teams.
- Bachelor's degree in Computer Science, Engineering, or related field.
Benefits
- Health, Dental, Vision benefits start on your first day.
- Employer sponsored 401(k) match of up to 2%.
- Yearly allotment of no cost visits to Spring Health network providers.
- Competitive paid time off policies including vacation and sick leave.
- Parental leave of 18 weeks for birthing parents and 16 weeks for non-birthing parents.
- Access to fertility care support and reimbursement for related expenses.
- Professional Development Reimbursement of up to $1,000 per year.
- Donation matching of $200 per year for supporting causes.