Application Security Engineer

about 5 hours ago

Phoenix, AZ, USAMid Level / Senior

H1B Sponsor

Responsibilities

Develop and execute a comprehensive application security strategy aligned with business objectives.
Maintain and advise on secure coding standards and application security processes.
Deliver application security and privacy training for development teams.
Review source code to identify security vulnerabilities and risks.
Triage and support remediation of application vulnerabilities identified through automated tools.
Manage application security workflows, including task prioritization and ticket tracking.
Maintain and enhance SmartRent’s responsible disclosure and vulnerability reporting program.
Collaborate with developers to implement encryption and secure key management practices.
Lead the investigation and mitigation of application-level security incidents.
Provide guidance on security controls for cloud infrastructure and application development.
Conduct regular application risk assessments to identify vulnerabilities.
Research emerging cybersecurity risks and recommend mitigation strategies.
Perform adversarial testing and security validation of applications.

4–6 years of experience in application security and collaboration with engineering teams.
Experience identifying and remediating application vulnerabilities in modern programming languages.
Strong knowledge of OWASP Top 10 and modern authentication mechanisms.
Hands-on experience with application security tools like SAST, DAST, and SCA platforms.
Experience with cloud security controls and AWS-native tools.
Experience managing or supporting vulnerability disclosure or bug bounty programs.
Strong written and verbal communication skills.
Demonstrated problem-solving and analytical skills in application security.

AWSCloudflareElixirJavaScript PythonRuby