Job Closed
This listing is no longer active.
Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. We recognize that our people are our strength. We are an equal opportunity employer and place a high value on diversity and inclusion. We do not discriminate on the basis of any protected attribute. We make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans.
Application Security Engineer
Location
United States
Posted
7 days ago
Salary
$100K - $150K / year
Seniority
Mid Level
Job Description
Application Security Engineer
Bright Vision Technologies
Role Description We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production. Key Responsibilities - Conduct threat modeling and security architecture reviews for new and existing applications and services. - Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components. - Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines. - Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking. - Build paved-road libraries and frameworks that make secure patterns the default for engineering teams. - Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses. - Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms. - Design and enforce secure authentication, authorization, session management, and cryptographic patterns. - Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments. - Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff. - Respond to security incidents involving application vulnerabilities or active exploitation. - Track and apply emerging threats and CVEs that may affect the application portfolio. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Stay current with application security research and emerging defensive tooling. Qualifications - Bachelor’s degree in Computer Science, Cybersecurity, or a related field. - Five or more years of application security or security engineering experience. - Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns. - Hands-on experience performing code review across at least two major languages. - Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling. - Strong understanding of authentication, authorization, and cryptographic primitives. - Experience with cloud security and modern infrastructure controls. - Strong communication skills with technical and non-technical audiences. - Proficiency in at least one programming language for tooling and automation. - Experience working closely with engineering teams in an Agile environment. Preferred Qualifications - Industry certifications such as OSCP, OSCE, GWAPT, or CISSP. - Experience with offensive security tooling and red-team operations. - Bug bounty experience, public CVEs, or open-source security contributions. - Familiarity with AI/LLM application security considerations. - Exposure to regulated industries with strict compliance requirements. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected] . Learn more about Bright Vision Technologies at www.bvteck.com .
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
Senior Application Security Engineer
AgileEngineAgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.
Role Description We are looking for a Senior Application Security Engineer to architect and build automated security layers within the SDLC, engineering AI-enabled secure code scanning, hardened baseline automation, and CI/CD security tooling integration across a large-scale financial services program. You will work in Python and/or Java to deploy and tune SAST, DAST, and SCA tools, provide code-level remediation guidance to development teams, and operate with full autonomy building automated security runbooks. The role requires 6+ years of software engineering experience with a strong AppSec and DevSecOps focus. What You Will Do - Engineer and deploy AI-enabled secure code scanning capabilities and “Golden Images” to drive secure-from-the-start adoption; - Automate the development of secure coding patterns and integrate them with traditional and Agentic SDLC workflows; - Architect the integration of continuous security scanning tools (SAST, DAST, SCA) into enterprise CI/CD pipelines, tuning them to eliminate noise; - Act as a senior technical SME, reading and reviewing complex application code (Java/Python) to provide software engineers with code-level remediation guidance. Qualifications - 6+ years of software engineering experience with a strong focus on Application Security and DevSecOps; - Strong coding and architectural proficiency in Python and/or Java; - Deep hands-on experience with SAST, DAST, SCA tools and CI/CD integration; - Fully autonomous execution capability without daily supervision; - Upper-intermediate English level. Nice to Haves - Experience integrating LLMs, AI agents, or automated coding assistants for vulnerability triage or secure code generation; - Advanced application threat modeling experience. Benefits - Remote work & local connection: Work where you feel most productive and connect with your team in periodic meet-ups. - Legal presence in India: Full local compliance and structured work environment. - Competitive compensation in INR: Dedicated budgets for growth, education, and wellness. - Innovative projects: Work with modern technologies and global clients.
Role Description We are looking for an experienced Application Security Engineer to join our cybersecurity team. The ideal candidate will be responsible for securing web applications and APIs by integrating security throughout the Software Development Life Cycle (SDLC). This role involves: - Implementing security tools - Identifying and validating vulnerabilities - Supporting remediation efforts - Collaborating with development teams to build secure applications Qualifications - Bachelor's degree in Computer Science, Information Security, or a related field - 7+ years of experience in Application Security or Cybersecurity - Hands-on experience with SAST, DAST, and vulnerability assessment tools - Strong knowledge of OWASP Top 10, API Security, and secure coding practices - Experience integrating security tools into CI/CD environments such as Jenkins, GitHub Actions, or GitLab - Familiarity with scripting languages such as Python, Bash, or PowerShell - Excellent analytical, troubleshooting, and communication skills Requirements - Implement and maintain security controls for web and API applications - Integrate security practices into the Secure SDLC, including threat modeling and security design reviews - Ensure compliance with organizational security policies and industry best practices - Manage and administer vulnerability scanning tools such as Tenable or equivalent solutions - Configure, optimize, and maintain scanning policies and schedules - Improve scan accuracy by reducing false positives and fine-tuning security tools - Deploy and manage Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) solutions - Integrate security testing into CI/CD pipelines - Work closely with development teams to ensure effective security testing and reporting - Identify, validate, and assess application vulnerabilities through automated and manual testing - Perform risk assessments and prioritize vulnerabilities based on business impact - Track remediation activities and ensure timely closure of security findings - Conduct manual and automated security assessments of web applications and APIs - Validate reported vulnerabilities and verify remediation after fixes are implemented - Document findings, attack scenarios, and remediation recommendations - Perform manual verification of vulnerabilities using penetration testing techniques - Develop proof-of-concept demonstrations when required - Support security assessments and red team activities Preferred Qualifications - Experience in threat modeling and secure architecture reviews - Hands-on exposure to penetration testing or red team activities - Industry certifications such as OSCP, CEH, GWAPT, CSSLP, or equivalent are preferred
Role Description Unilever Profesional es la unidad de negocio enfocada en el desarrollo de productos para la limpieza e higiene institucional, que busca contribuir y potenciar el trabajo de hoteles, restaurantes, lavanderías y otras instituciones, aplicando toda la experiencia, innovación y recursos de nuestra compañía en el desarrollo conjunto de soluciones a medida para las necesidades del sector profesional. Nuestro Application expert trabaja en conjunto con MKT y R&D. Es nuestro experto y referente en el uso y aplicación de nuestros productos para los segmentos Floor Care, Building Care y Kitchen Care. Estos son los desafíos que te esperan: - Trabajar en conjunto con Ventas y MKT para ganar nuevas cuentas e incrementar el share del negocio. - Testeo en campo de innovaciones. - Recomendación de fórmulas a R&D. - Start-Up de los lanzamientos en clientes. - Identificación y resolución de problemas en clientes. - Acompañamiento en mejorar procesos y capacitación en el correcto uso y aplicación de los productos. - Desarrollar material de entrenamiento para uso interno y externo. - Poder evaluar y testear nuestra propuesta de productos con la propuesta de competidores. - Brindar herramientas al equipo de ventas, DSRs y KA. - Crear vínculos sólidos con expertos de los DSRs y KA para generar negocios win win. - Implementación y ejecución de planes. - Desarrollo comercial de distribuidores. Qualifications - Experiencia de +2 años en posiciones similares (Excluyente). - Base química. - Rol consultivo y proactividad de mejora de procesos y soluciones integrales. - Pensamiento crítico y analítico, orientado a la gestión de negocios. - Idioma Inglés intermedio. - Disponibilidad para viajar. - Registro de conducir activo. Benefits - Días adicionales de vacaciones. - Viernes Flex. - Día de cumpleaños flex. - caja de productos bimestral. - Ayuda económica para armar tu oficina en casa. - Descuentos en becas de grado y posgrado, cursos cortos e idiomas. - Posibilidad de participar del programa de acciones. - Auto. - Y mucho más!
Lead Customer Application Engineer
GE VernovaGeneral Electric Company, Ropcor, Inc., their successors, and in some cases their affiliates, each sponsor certain employee benefit plans or programs (i.e., is a “Sponsor”). Each Sponsor reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a Sponsor’s welfare benefit plan or program. This document does not create a contract of employment with any individual. Additional Information Relocation Assistance Provided: Yes #LI-Remote - This is a remote position
• The Tendering Engineer for Substation Automation supports business growth by delivering accurate, competitive, and compliant proposals for substation automation, protection, control, packaged with Telecom and M&D systems. • Manage entire bid process pertaining to Grid Automation, from analysing client requests to submitting proposals. • Focus on interpreting customer requirements, defining optimized technical solutions, and ensuring alignment with standards and commercial objectives. • Collaborate with internal stakeholders and external partners to develop cost models, assess risks, and optimize scope and delivery. • Play a critical role in securing profitable projects through disciplined tender governance and strong technical judgment.

