All internet should be this simple.
Senior Application Security Engineer
Location
United States
Posted
1 day ago
Salary
$156.9K - $229.7K / year
Seniority
Senior
Job Description
Senior Application Security Engineer
Google Fiber
• Manage and optimize core application defenses, including the Web Application Firewall (WAF) and automated vulnerability scanning tools, while monitoring key security metrics. • Architect and maintain security gating processes within the CI/CD pipeline to ensure secure, seamless software delivery. • Govern and secure our growing AI pipeline within the SDLC by implementing input/output monitoring, context controls, and safety guardrails around AI-generated code. • Partner with development teams to remediate vulnerabilities, scale the security champions program, and co-lead our public bug bounty initiative. • Mentor junior engineers and analysts, and occasionally present security postures, trends, and program milestones to upper management.
Job Requirements
- Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience.
- 5 years of experience with managing Web Application Firewalls (WAF) and integrating automated security gating into CI/CD pipelines.
- Experience with vulnerability management and cloud-hosted application security scanning tools.
- Experience collaborating directly with software development teams on threat mitigation.
- Experience with scripting or programming languages (i.e., Python, Java, Kotlin) to automate security processes.
Benefits
- bonus
- benefits
Related Guides
Related Categories
Related Job Pages
More Application Engineer Jobs
• Support the modernization of legacy applications, integrations, and workflows • Use approved AI tools such as GitHub Copilot, Claude, Codex, and similar tools to assist with code analysis, documentation, refactoring support, test generation, and modernization research under senior engineering guidance • Design and standardize modernization and migration framework for transforming applications and integrations • Establish scalable, reuseable frameworks for enterprise applications and integrations transformation and modernization • Work with the Manager/Principal Architect and Application development teams from strategy to solution to implementation and support of applications and integrations • Work closely with the Business Analysts on the understanding of functional and technical system requirements for architecting, designing and delivering solutions to meet business needs • Create solution designs that leverage the architecture standards and services to meet key project design criteria including Availability, Recoverability, Scalability, and Performance • Coordinate with other team members in the development of the integrations architecture roadmap that aligns with the strategic objectives of business groups and different technology groups • Build AI-first pipelines leveraging Claude, Codex, GitHub Copilot, agentic AI, and complementary tooling • Define and promote new ways of working for AI-driven transformation • Incorporate lean principles in all projects prior to the design phase • Provide architectural and technical input for definition, estimation and delivery of projects and solutions • Keep abreast of changes in technology regarding applications and integrations architecture, design and development • Work closely with the support team in managing tier III escalations and providing timely and quality production support to our business users • Work closely with Agile teams to deliver incremental software releases and enhancements • Work supportively with colleagues, operating in a manner that is consistent with 11:11’s Code of Business Ethics and Company Values • Responsibly receive, transmit, and handle company data and information per Company data handling agreements, work procedures and policies • Review and follow company policies and guidelines, data privacy practices, including annual compliance training certification and policy acknowledgements • Additional duties as assigned
• Develop system and application solutions, including motion architecture, system topology, and software design • Create customer-specific application software and support full project lifecycle (prototype through commissioning) • Configure and commission drives (VFDs, inverters, servo systems) and develop PLC/HMI programs • Support testing, start-up, and field validation of automation solutions • Capture and standardize application knowledge into reusable tools and best practices • Partner with Sales to develop solution concepts aligned to customer requirements • Provide technical support during pre-sales activities, including customer meetings, workshops, and presentations • Assist in preparing proposals and identifying upsell or cross-sell opportunities • Build strong customer relationships and support overall sales growth objectives • Deliver advanced technical support to customers and internal teams (remote and onsite) • Size and select appropriate products and solutions based on application needs • Support commissioning and troubleshooting during system start-up • Conduct product demonstrations and deliver technical training to customers and internal teams • Develop training materials, application documentation, and technical guides • Support ongoing technical development within the Sales organization • Travel up to 25% across the region for customer support, sales activities, and training
Application Security Engineer
Bright Vision TechnologiesBright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications.
Role Description We are looking for an Application Security Engineer to embed security throughout the software development lifecycle, partnering with engineering teams to design secure systems, identify vulnerabilities, and reduce risk across our application portfolio. The role blends hands-on offensive and defensive skills with strong communication and collaboration, helping development teams build secure software efficiently rather than slowing them down. The ideal candidate brings deep technical security expertise, strong software engineering fundamentals, and a track record of shipping security improvements that meaningfully reduce risk in production. Key Responsibilities - Conduct threat modeling and security architecture reviews for new and existing applications and services. - Perform manual code reviews, secure design consultations, and pair with engineering teams on hardening critical components. - Operate and tune SAST, DAST, IAST, SCA, and secret-scanning tools across CI/CD pipelines. - Drive vulnerability management workflows including triage, prioritization, owner assignment, and SLA tracking. - Build paved-road libraries and frameworks that make secure patterns the default for engineering teams. - Lead red-team and purple-team exercises against internal applications and drive remediation of identified weaknesses. - Implement and operate runtime protections including WAF, RASP, bot protection, and abuse-detection mechanisms. - Design and enforce secure authentication, authorization, session management, and cryptographic patterns. - Partner with infrastructure and platform teams to harden container, Kubernetes, and cloud environments. - Develop and deliver application security training, lunch-and-learns, and onboarding content for engineering staff. - Respond to security incidents involving application vulnerabilities or active exploitation. - Track and apply emerging threats and CVEs that may affect the application portfolio. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Stay current with application security research and emerging defensive tooling. Qualifications - Bachelor’s degree in Computer Science, Cybersecurity, or a related field. - Five or more years of application security or security engineering experience. - Strong understanding of OWASP Top 10, common vulnerability classes, and modern exploit patterns. - Hands-on experience performing code review across at least two major languages. - Deep familiarity with SAST, DAST, SCA, and CI/CD-integrated security tooling. - Strong understanding of authentication, authorization, and cryptographic primitives. - Experience with cloud security and modern infrastructure controls. - Strong communication skills with technical and non-technical audiences. - Proficiency in at least one programming language for tooling and automation. - Experience working closely with engineering teams in an Agile environment. Preferred Qualifications - Industry certifications such as OSCP, OSCE, GWAPT, or CISSP. - Experience with offensive security tooling and red-team operations. - Bug bounty experience, public CVEs, or open-source security contributions. - Familiarity with AI/LLM application security considerations. - Exposure to regulated industries with strict compliance requirements. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected] or contact us at (908) 650-6699. Learn more about Bright Vision Technologies at www.bvteck.com .
• Technical Proposal Development (60%) : Develop, own, and lead Trojan Technologies technical bid strategy for moderate to complex projects assigned. • Develop proposals to meet customer design requirements for new systems, mobile rentals, and long term customer support opportunities to meet customer timelines. • Review and interpret customer technical specifications, drawings, water analysis data, and other technical information. • Develop complete exceptions and clarifications list. • Perform calculations to size the equipment and achieve the required overall process design at a competitive cost position. • Ensure process design, system design, material and labor cost budget and project delivery schedule in offering are aligned with execution and product capabilities. • Identify technical risks for project offerings, evaluate the impact of the risk, and formulate strategies for risk mitigation. • Facilitate the transfer of an opportunity to a project. • Customer/Market Influence (20%) : Work with customers at the budgetary or firm phase to understand their technical needs and apply Aria Filtra technical value proposition in a timely fashion. • Use technical product expertise to instill confidence in Aria Filtra’s offering, influencing customers to write specifications that demand the intrinsic value of Aria Filtra’s products and services. • Interface with customers, engineers, contractors, and internal team members to understand VOC and generate ideas for growth opportunities. • Participate in terms and conditions negotiations as required to provide technical guidance. • Tools/Process Improvement (20%) : Lead or assist with the development and maintenance of costing tools to enable Applications Engineers to efficiently and accurately cost projects. • Lead or assist with the development and maintenance of budgetary tools to enable the Sales team to efficiently quote projects. • Assist with the development of process and equipment sizing tools as required.



