Application Security Engineer (Remote - US)

This position is posted by Jobgether on behalf of Lumin Digital. We are currently looking for an Application Security Engineer in United States.

In this role, you will ensure the security and integrity of software applications in a highly regulated, cloud-native environment. You will work closely with Product and Development teams to embed security throughout the Software Development Life Cycle (SDLC), from design to deployment and ongoing maintenance. The role involves managing automated vulnerability scanning, coordinating penetration tests, advising on secure architecture, and supporting compliance and incident response initiatives. You will play a key part in maintaining a strong security posture while enabling rapid development and deployment of innovative digital solutions. This position offers a collaborative, fast-paced environment where your expertise directly contributes to protecting sensitive data and enhancing user trust.

Accountabilities

·         Monitor and analyze security alerts and vulnerability reports, prioritizing remediation efforts.

·         Maintain and optimize automated vulnerability scanning systems (SAST/DAST) for comprehensive application security coverage.

·         Coordinate third-party penetration tests, bug bounty programs, and vulnerability assessments, responding effectively to findings.

·         Collaborate with cross-functional teams to perform architectural and code reviews, delivering actionable recommendations.

·         Develop and maintain application threat models to guide proactive risk management and security posture improvements.

·         Support internal teams in vulnerability remediation using industry-standard tools (e.g., Veracode, Qualys, Rapid7, Burp).

·         Assist with incident response, enabling rapid identification, containment, and resolution of application security incidents.

·         Provide guidance on security risk management, compliance audits, and client communications.

·         Stay updated on emerging threats, vulnerabilities, and best practices, translating insights into actionable guidance.

·         Perform other duties as assigned to support organizational security goals.

·         Bachelor’s degree in Computer Science, Cybersecurity, Management Information Systems, or a related field, or equivalent experience.

·         4+ years of experience in application security engineering, software engineering, or related security-focused roles.

·         3+ years of hands-on experience identifying and assessing application security vulnerabilities, preferably in web, financial services, or mobile application environments.

·         Proficiency analyzing application source code (TypeScript, JavaScript, C#, Java, Swift) to identify vulnerabilities.

·         Strong technical knowledge of security standards and vulnerabilities (OWASP Top 10, CWE, CVSS).

·         Familiarity with authentication and authorization protocols (SAML, OAuth 2.0, JWT).

·         Applied knowledge of cryptographic practices, including encryption, hashing, and authentication lifecycle management.

·         Experience with AWS, Git, and industry-standard application vulnerability platforms.

·         Excellent analytical, communication, and coordination skills; ability to manage remediation tasks effectively.

·         Ability to work productively in remote or distributed team environments.

·         Passion for continuous learning and staying updated on security trends and emerging threats.

·         Competitive salary: $120,000–$130,000 per year.

·         Comprehensive medical, dental, and vision coverage.

·         Flexible remote work environment with a collaborative culture.

·         Professional development and learning opportunities.

·         Supportive, innovation-driven company culture focused on trust, respect, and bold ideas.

·         Minimal travel requirements (typically 12 days or fewer per year).

Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.
When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.
The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role.
Once the shortlist is completed, we share it directly with the company that owns the job opening. The final decision and next steps (such as interviews or additional assessments) are then made by their internal hiring team.

Thank you for your interest!

#LI-CL1