AgileEngine logo
AgileEngine

AgileEngine is an Inc. 5000 company that creates award-winning software for Fortune 500 brands and trailblazing startups across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has earned us multiple Best Place to Work awards.

Senior Application Security Engineer

Application EngineerApplication EngineerFull TimeRemoteSeniorTeam 1,001-5,000

Location

India

Posted

7 days ago

Salary

0

Seniority

Senior

Job Description

Senior Application Security Engineer

AgileEngine

Role Description We are looking for a Senior Application Security Engineer to architect and build automated security layers within the SDLC, engineering AI-enabled secure code scanning, hardened baseline automation, and CI/CD security tooling integration across a large-scale financial services program. You will work in Python and/or Java to deploy and tune SAST, DAST, and SCA tools, provide code-level remediation guidance to development teams, and operate with full autonomy building automated security runbooks. The role requires 6+ years of software engineering experience with a strong AppSec and DevSecOps focus. What You Will Do - Engineer and deploy AI-enabled secure code scanning capabilities and “Golden Images” to drive secure-from-the-start adoption; - Automate the development of secure coding patterns and integrate them with traditional and Agentic SDLC workflows; - Architect the integration of continuous security scanning tools (SAST, DAST, SCA) into enterprise CI/CD pipelines, tuning them to eliminate noise; - Act as a senior technical SME, reading and reviewing complex application code (Java/Python) to provide software engineers with code-level remediation guidance. Qualifications - 6+ years of software engineering experience with a strong focus on Application Security and DevSecOps; - Strong coding and architectural proficiency in Python and/or Java; - Deep hands-on experience with SAST, DAST, SCA tools and CI/CD integration; - Fully autonomous execution capability without daily supervision; - Upper-intermediate English level. Nice to Haves - Experience integrating LLMs, AI agents, or automated coding assistants for vulnerability triage or secure code generation; - Advanced application threat modeling experience. Benefits - Remote work & local connection: Work where you feel most productive and connect with your team in periodic meet-ups. - Legal presence in India: Full local compliance and structured work environment. - Competitive compensation in INR: Dedicated budgets for growth, education, and wellness. - Innovative projects: Work with modern technologies and global clients.

Related Categories

Related Job Pages

More Application Engineer Jobs

ContractRemoteTeam 201-500H1B No Sponsor

• Lead the modernization of enterprise applications and legacy systems. • Design, develop, and modernize .NET applications. • Migrate legacy platforms to modern architectures. • Build scalable, cloud-native solutions. • Develop and maintain RESTful APIs and microservices-based applications. • Design and integrate solutions with SQL Server and other relational databases. • Optimize application performance through code refactoring and architectural improvements.

Maryland
Job Closed
Convatec logo

Lead PLM Application Engineer

Convatec

Pioneering trusted medical solutions to improve the lives we touch

Full TimeRemoteTeam 5,001-10,000Since 1978H1B Sponsor

• Lead and manage a Teamcenter support team of three, allocating workload, setting priorities, monitoring performance, and ensuring high-quality service delivery against agreed SLAs. • Act as the lead escalation point for L1/L2/L3 Teamcenter incidents and service requests, investigating, diagnosing, and coordinating the resolution of complex application defects, server errors, workflow failures, and data issues with structured root-cause analysis and permanent fixes. • Lead the design and governance of custom Teamcenter solutions using ITK APIs, BMIDE business modeller, Active Workspace client-side customisation, Java or C++ extensions, and workflow handler development, while mentoring team members and maintaining a controlled GxP SDLC. • Author and maintain controlled technical documents including System Design Specifications (SDS), Validation Plans, IQ/OQ/PQ protocols, SOPs, change control records, and user guides in compliance with ISO 13485 and 21 CFR Part 11 document control requirements. • Support Computer System Validation (CSV) activities – including installation qualification, operational qualification, and performance qualification – to keep Teamcenter in a validated state aligned with EU MDR 2017/745, ISO 13485, and FDA 21 CFR Part 11. • Oversee day-to-day Teamcenter service operations and server administration, including environment health monitoring, patch and upgrade planning, data model migrations, capacity planning, and coordination of team activities. • Participate in internal and external audits (FDA, Notified Body, ISO) as the Teamcenter SME, providing evidence of system validation, data integrity controls, and audit trail completeness. • Manage change requests through the formal change control process, including impact assessments, regression testing, and updating validation documentation prior to deployment in the production environment. • Coach and develop the Teamcenter support team, establish knowledge-sharing practices, and ensure end-user training, user guides, and ongoing support are delivered effectively across engineering, quality, and regulatory functions.

India
Convatec logo

PLM Application Engineer – Teamcenter

Convatec

Pioneering trusted medical solutions to improve the lives we touch

Full TimeRemoteTeam 5,001-10,000Since 1978H1B Sponsor

• Resolve L1/L2/L3 Teamcenter incidents and service requests within SLA • Investigate, diagnose, and resolve Teamcenter application defects, server errors, workflow failures, and data issues, applying structured root-cause analysis and providing permanent fixes with full traceability • Develop custom Teamcenter solutions using ITK APIs, BMIDE business modeller, Active Workspace client-side customization, Java or C++ extensions, and workflow handler development, all under a controlled GxP SDLC • Author and maintain controlled technical documents including System Design Specifications (SDS), Validation Plans, IQ/OQ/PQ protocols, SOPs, change control records, and user guides in compliance with ISO 13485 and 21 CFR Part 11 document control requirements • Support Computer System Validation (CSV) activities – including installation qualification, operational qualification, and performance qualification – to keep Teamcenter in a validated state aligned with EU MDR 2017/745, ISO 13485, and FDA 21 CFR Part 11 • Manage day-to-day Teamcenter server administration: environment health monitoring, patch and upgrade planning, data model migrations • Participate in internal and external audits (FDA, Notified Body, ISO) as the Teamcenter SME, providing evidence of system validation, data integrity controls, and audit trail completeness • Manage change requests through the formal change control process, including impact assessments, regression testing, and updating validation documentation prior to deployment in the production environment • Deliver end-user training, create user guides and quick-reference materials, and provide ongoing helpdesk-level support to Teamcenter users across engineering, quality, and regulatory functions

India
Monarch Money logo

Senior Application Security Engineer

Monarch Money

A financial coach in your pocket. Get personalized advice on how to best grow your money.

Full TimeRemoteTeam 1-10Since 2016H1B No Sponsor

• Conduct application security reviews — threat modeling, code review, and risk assessment — for new features and major product changes across Monarch's Django/Python stack • Perform and improve SAST/DAST operations including triage, validation, and remediation tracking of findings in CI/CD pipelines • Work through the vulnerability backlog with urgency — maintaining triage criteria, remediation tracking, and escalation paths in partnership with engineering squads • Perform and coordinate penetration testing and security assessments against Monarch's web and API surfaces • Apply and improve AI security review processes for LLM-integrated features and agentic attack surfaces — covering prompt injection, data leakage, model abuse, and supply chain risk • Build and maintain security automations and AI-powered tooling, and define and assess security requirements for AI workflows and agentic systems. • Participate in the weekly security on-call rotation

Worldwide
$180K - $215K / year