Application Security Engineer

Job Summary

A company is looking for an Application Security Engineer II - Product Security (Remote).

Key Responsibilities

• Collaborate with engineering teams to provide security expertise and influence product design
• Create and maintain threat models to inform security decisions and reduce threat surface area
• Review application source code for security defects and assist developers in implementing solutions

Required Qualifications

• Moderate understanding of software development in Agile/DevOps environments
• Experience with threat modeling, particularly using STRIDE
• Code review experience with applications built in Go, Python, or Java
• Knowledge of secure configuration for cloud-native and containerized applications
• Familiarity with application security tools such as SAST, DAST, and CSPM