7 days ago
Remote, United StatesSenior / Mid Level
H1B Sponsor
Base Salary
$180k - $190k/yr
Responsibilities
- Embed security into the SDLC by partnering with Engineering.
- Lead and perform application security assessments including SAST, DAST, SCA, and manual code review.
- Drive API security across internal and external services.
- Own and mature the vulnerability management program.
- Champion software supply chain security initiatives.
- Assist GRC with technical third-party risk reviews.
- Respond to and lead security incidents in a timely manner.
- Implement and iterate on security automation and orchestration.
- Monitor and improve security controls across cloud infrastructure.
- Assess and mitigate AI-specific security risks.
Requirements
- 5–7 years of experience in a security engineering or application security role.
- Strong communication skills to translate technical risk for various audiences.
- Hands-on experience with SAST/DAST tools like Semgrep, Snyk, and Burp Suite Pro.
- Ability to independently manage security incidents end-to-end.
- Experience securing cloud-native environments.
- Solid knowledge of API security standards.
- Experience with mobile application security testing is a plus.
- Familiarity with security frameworks like SOC 2 and PCI-DSS.
- Scripting proficiency in Python and/or Bash.
- Strong ethics and discretion in handling sensitive information.
- Familiarity with AI/LLM security risks and emerging standards.
- Security certifications are a plus.
Benefits
- Market-leading medical, dental, and vision insurance.
- Stock options.
- Free Premium-Tier Origin Financial Wellness subscription.
- Monthly home-office stipend.
- 401k plan.
- 12-weeks paid parental leave for all parents.
- Flexible time off plus sick and safe time.
- 11 paid company holidays.
- Branch@Branch Same Day Pay Option.