Application Security Engineer

Job Description

As a Staff Application Security Engineer, you’ll ensure our platform is secure by design and secure by default.

You’ll embed security into how we build; partnering with product and engineering teams to shape secure architectures, APIs, and development practices across our cloud-native SaaS platform running on AWS.

You’ll help us scale security while maintaining high engineering velocity.

At Staff level, you will lead cross-team security initiatives such as secure-by-default patterns, major authentication migrations, and large-scale dependency risk reduction.

You’ll influence architectural decisions across multiple product teams and mentor engineers across the organisation, uplifting secure coding and design practices at scale.

About You You’re a hands-on security engineer with strong software engineering fundamentals.

You understand how modern SaaS platforms are built; microservices, distributed systems, CI/CD and you know how to make them secure in practical, scalable ways.

You’re comfortable reviewing production code (we primarily use Go), leading threat modelling discussions, and guiding teams on secure patterns.

You communicate clearly, think in terms of risk and impact, and enjoy working closely with engineers to make the secure path the easiest path.

How you will spend your time

Design secure architectures and APIs in partnership with product teams.

Lead threat modelling and secure design reviews for new features and services

Embed secure SDLC practices (SAST, DAST, dependency scanning, CI/CD security controls)

Strengthen authentication, authorisation, and access control patterns

Improve supply-chain security and vulnerable dependency remediation

Review penetration tests and drive effective remediation

Provide pragmatic, risk based guidance to teams and stakeholders, balancing security, usability and delivery speed. (ISO 27001, SOC 2)

Skills you bring

Experience in application or product security for internet-facing SaaS platforms, ideally cloud-native.

Strong software engineering background — able to read, reason about, and review production code (Go experience is beneficial but not required).

Hands-on experience integrating security into CI/CD pipelines and modern development practices (SAST/DAST, dependency scanning, container scanning, security gates).

Applied knowledge of web and API vulnerabilities (OWASP Top 10 and beyond) and practical mitigation strategies.

Ability to communicate security concepts clearly and collaborate effectively with product and engineering teams.

Are you interested in this position?

Apply by clicking on the “Apply Now” button below!

#GraphicDesignJobsOnline

#WebDesignRemoteJobs #FreelanceGraphicDesigner #WorkFromHomeDesignJobs #OnlineWebDesignWork #RemoteDesignOpportunities #HireGraphicDesigners #DigitalDesignCareers# Dynamicbrand guru