Senior AppSec Engineer
PrizePicks7 days ago
Remote, Worldwide or Atlanta, GA, USASenior / Mid Level
Base Salary
$90k - $180k/yr
Responsibilities
- Support and optimize application security tooling within CI/CD pipelines.
- Act as the primary security partner for Engineering and Product teams.
- Lead collaborative threat modeling exercises to identify architectural risks.
- Perform deep-dive code reviews and provide actionable remediation guidance.
- Identify and remove hard-coded secrets for secure secret management.
- Manage the bug bounty program by triaging submissions and validating fixes.
- Serve as a security consultant for AI/ML initiatives.
- Support the team during application-related security incidents.
- Perform security assessments on new features to identify logic flaws.
- Translate technical vulnerabilities into business risk for documentation.
Requirements
- 3+ years of experience in software development or application security.
- Hands-on experience integrating security tools into automated workflows.
- Deep knowledge of the OWASP Web Security Testing Guide and/or Mobile Application Security Testing Guide.
- Experience conducting Threat Modeling to catch flaws before they are built.
- Familiarity with the OWASP Top 10 for LLMs and AI integration risks.
- Experience supporting an Incident Response process from an AppSec perspective.
- A deep understanding of web application mechanics and validation.
- Proven ability to define risks in both technical and business terms.
Benefits
- Company-subsidized medical, dental, and vision plans.
- 401(k) plan with company match.
- Annual bonus.
- Flexible PTO to encourage a healthy work/life balance.
- Generous paid leave programs, including 16-week paid parental leave.
- Workplace flexibility and modern work schedules.
- Company-wide in-person events and team outings.
- Lifestyle enhancement program.
- Company equipment provided (Windows & Mac options).
- Annual performance reviews with opportunities for growth.