Application Security Jobs

The Application Security Engineer role at Bright Vision Technologies involves embedding security practices throughout the software development lifecycle to protect scalable business applications. Key responsibilities include conducting threat modeling, performing manual code reviews, operating security tooling within CI/CD pipelines, and leading red-team exercises to identify and remediate vulnerabilities. The position offers a fully remote work arrangement within a direct W2 employment structure, providing significant career growth potential in a collaborative environment that values innovation and technical excellence.

This contract role serves as an IT Business Analyst III supporting compliance and information security activities for critical applications within a global IT consulting firm. The position focuses on managing vulnerability remediation, ensuring timely delivery of risk and compliance requirements, and assisting with internal and external audits. Key responsibilities include coordinating security fixes with development teams, maintaining application data, and managing third-party vendor compliance. The role offers exposure to large-scale security portfolios and cutting-edge technologies within a supportive, inclusive culture. The position is based in Charlotte, North Carolina, requiring a hybrid work arrangement with a minimum of three days onsite per week.

This Senior Technical Account Manager role supports a cybersecurity client's Solution Success team, focusing on Application Security Posture Management. The position blends pre-sales solution design with post-sales adoption, requiring collaboration with sales, engineering, and product groups to maximize customer value. Key responsibilities include leading technical demos and proofs-of-concept, architecting secure software supply chain integrations, and guiding customers through onboarding and quarterly business reviews. The role appeals to professionals seeking a high-impact environment where they can serve as a trusted advisor, shape product roadmaps based on real-world insights, and drive long-term client retention. The position offers a dynamic setting for those passionate about DevSecOps and modern software development pipelines.

This role within OpenAI's Safety Systems team focuses on defining model policies for frontier cyber risk, ensuring AI systems align with human values in high-stakes cybersecurity contexts. Key responsibilities include designing policy frameworks for dual-use risks, translating complex threat models into behavioral specifications, and collaborating with engineering teams to implement measurable safeguards. The position sits at the intersection of offensive security, AI safety, and policy implementation. It offers the appeal of working at the forefront of AGI safety with a mission to protect humanity from misuse while enabling legitimate defense. The role is based in San Francisco with a hybrid schedule requiring three days in the office, supported by a collaborative culture and comprehensive on-site amenities.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, vulnerability scanning, and penetration testing while implementing automated security frameworks and CI/CD pipelines. Key responsibilities include designing infrastructure as code solutions, maintaining proxy servers and firewalls, and conducting risk assessments to ensure compliance. The role appeals to candidates seeking to work with cutting-edge cloud technologies and automation tools in a mission-critical setting. It requires an active Top Secret clearance and offers opportunities for professional growth through the use of advanced scripting and containerization platforms. The position includes limited travel and supports a collaborative environment dedicated to robust network security and operational excellence.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position also involves designing CI/CD pipelines, maintaining infrastructure as code, and ensuring compliance through rigorous network security analysis and patch management. The role appeals to professionals seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. It requires an active Top Secret clearance and offers opportunities for professional growth through the use of advanced containerization and security platforms. The position includes limited travel requirements and supports a collaborative culture focused on continuous improvement and system reliability.

This DevSecOps Engineer role within the Technology and Consulting Services team focuses on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position involves designing secure deployment processes, maintaining infrastructure as code, and performing root cause analysis on network security issues. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. The role requires an active Top Secret clearance and offers a hybrid work arrangement with occasional travel. It is ideal for experienced engineers looking to advance their skills in CI/CD pipelines, containerization, and zero-trust security models.

This DevSecOps Engineer role supports a specialized team within Maximus TCS, focusing on integrating security practices into development and operations workflows. The position involves managing incident response, conducting vulnerability scans and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. Key responsibilities include designing secure deployment pipelines, maintaining infrastructure as code, and performing root cause analysis on network security issues. The role offers the opportunity to work with cutting-edge cloud technologies and automation tools in a mission-driven environment. Candidates must hold an active Top Secret clearance and possess significant experience in IT security. The position requires occasional travel and offers a collaborative setting for professionals dedicated to advancing cloud site reliability and security standards.

This DevSecOps Engineer role supports a specialized team within Technology and Consulting Services, focusing on integrating security practices into development and operations workflows. Key responsibilities include managing incident response, conducting vulnerability scanning and penetration testing, and implementing automated security frameworks using scripting languages and open-source tools. The position also involves maintaining compliance, managing access controls, and automating infrastructure provisioning with tools like Terraform and Ansible. The opportunity is appealing for professionals seeking to work with cutting-edge cloud technologies and CI/CD pipelines in a collaborative environment. The role requires an active Top Secret clearance and offers a hybrid work arrangement with occasional travel.

This AVP-level Product Security Architect role provides enterprise leadership for application and SaaS security within Synchrony's technology ecosystem. The position focuses on defining the Application Security Blueprint, establishing reference architectures, and setting engineering guardrails to ensure secure-by-design delivery. Key responsibilities include driving threat modeling at scale, standardizing API and service-to-service security patterns, and partnering with product leaders to embed security into roadmaps and the SDLC. The role appeals to candidates seeking to influence strategy across multiple portfolios while mentoring engineers and operationalizing security standards. The position operates at a senior level with opportunities for professional growth in a collaborative, inclusive culture and requires occasional business travel.

The AVP, Product Security Architect role provides enterprise-level leadership for application and SaaS security architecture within Synchrony's technology ecosystem. The position focuses on defining the Application Security Blueprint, establishing reference architectures, and setting engineering guardrails to ensure secure-by-design software delivery. Key responsibilities include leading architecture governance, driving threat modeling at scale, standardizing API and service-to-service security patterns, and partnering with product leaders to embed security into roadmaps. This role appeals to candidates seeking to influence strategy across multiple portfolios while mentoring engineers and operationalizing security standards. The position operates at a senior level with opportunities for professional growth in a collaborative, inclusive culture and requires flexibility for business travel.

The AVP, Product Security Architect role provides enterprise-level leadership for Synchrony's application and SaaS security ecosystem. The position focuses on defining the Application Security Blueprint, establishing reference architectures, and setting engineering guardrails to ensure software is secure-by-design. Key responsibilities include leading architecture governance, driving threat modeling at scale, and standardizing API and service-to-service security controls. This role appeals to candidates seeking to influence product strategy and mentor engineering teams within a collaborative culture that values inclusion and professional growth. The position operates at a strategic level to embed security into the software delivery lifecycle and requires flexibility for occasional business travel.

The AVP, Product Security Architect role provides enterprise-level leadership for product security architecture within Synchrony's application and SaaS ecosystem. The position focuses on defining the Application Security Blueprint, establishing reference architectures, and setting engineering guardrails to ensure software is secure-by-design. Key responsibilities include leading architecture governance, driving threat modeling at scale, standardizing API and service-to-service security controls, and partnering with product and engineering leaders to embed security into the software delivery lifecycle. This role appeals to candidates seeking to influence strategy across multiple portfolios while mentoring engineers and operationalizing security standards. The position operates at a senior level with opportunities to shape industry-leading security practices and requires flexibility for business travel.

This full-time security engineering role within JetBlue's technology team focuses on designing, deploying, and optimizing security solutions across cloud and on-premise environments. Key responsibilities include automating security operations using Python and orchestration tools, administering SIEM platforms for threat analysis, and securing containerized architectures. The position appeals to candidates seeking to protect critical infrastructure while working with modern cloud technologies like Azure and AWS. The role offers a hybrid work arrangement with occasional travel and emphasizes a culture centered on safety, integrity, and collaboration.

The Security Assessor role at TLA focuses on evaluating the effectiveness of security controls within information systems to ensure data protection and regulatory compliance. Key responsibilities include conducting comprehensive security assessments, identifying vulnerabilities through scanning and testing, and collaborating with IT teams to validate remediation strategies. The position requires preparing detailed documentation and ensuring adherence to frameworks such as NIST and ISO 27001. This opportunity is appealing for professionals passionate about national security missions, offering a collaborative culture that values innovation and excellence. The company supports career growth through education reimbursement, certification opportunities, and professional development. The role is based on-site with a focus on delivering impactful outcomes for government customers.

The Principal Cyber Security Architect role serves as a strategic leader within Constellation's IT and business teams, driving security technology and reference architecture for a major clean energy portfolio. Key responsibilities include designing enterprise-wide security strategies, translating regulatory requirements into technical standards, and providing expert consultation on secure application development and risk management. This position offers the opportunity to shape the security landscape for critical infrastructure while working independently with minimal supervision. The role is appealing for its focus on mission-driven work that supports a cleaner planet, combined with a culture that encourages professional growth and collaboration. The position operates within a hybrid environment, balancing technical depth with high-level business strategy.

This Security Engineer role within the Security Architecture team focuses on designing and reviewing secure solutions across Zoom's products and services. Key responsibilities include conducting threat modeling, performing security code reviews, and assessing cloud infrastructure configurations on AWS. The position also involves guiding engineering teams on secure system design and providing training on secure coding best practices. The role offers the opportunity to work with cutting-edge cloud technologies while making a direct impact on platform security. It is part of a collaborative, growth-focused environment that supports a structured hybrid work arrangement.

The Manager - Security Architect role at EY focuses on designing secure architectures for enterprise applications and AI-native platforms within a globally connected team. Key responsibilities include developing security designs, selecting verification tools, creating best practices for AI security, and collaborating with cross-functional experts to assess new projects. The position appeals to candidates seeking to shape the future of technology in a diverse, inclusive culture that values emotional intelligence and hybrid collaboration. The role offers a flexible work arrangement with a hybrid model requiring in-person engagement 40-60% of the time, alongside opportunities for professional development and a comprehensive benefits package.

The Principal Enterprise Security Architect - Director role serves as a global strategic authority within SMBC Group's Americas division, responsible for shaping the Enterprise Security Architecture strategy for a top-tier financial institution. Key duties include defining multi-year security roadmaps that integrate cloud resilience, zero trust principles, and emerging AI/agentic system safeguards while ensuring alignment with global regulatory frameworks. The position involves advising C-suite leaders, governing enterprise-wide security standards, and mentoring future architects to drive innovation. This opportunity appeals to candidates seeking to lead high-impact security initiatives in a collaborative, hybrid work environment with a prestigious global organization known for its 400-year history and commitment to future-proofing financial services.

The Engineering Manager, Cloud Security role leads a team dedicated to securing Paxos' AWS and Kubernetes infrastructure. The position involves setting technical direction for Zero Trust architectures, managing multi-account cloud environments, and establishing automated guardrails through infrastructure as code. Key responsibilities include coaching security engineers, leading high-pressure incident response, and partnering with product and compliance teams to embed security into development workflows. This remote opportunity appeals to leaders who want to drive a culture where security acts as an enabler for rapid innovation. The role offers the chance to shape the future of financial infrastructure while working within a collaborative environment that values technical excellence and strategic growth.

This senior security engineering role focuses on application security within a new, engineering-driven team at ClickUp, a leading AI workspace platform. The position involves embedding directly into product engineering groups to design, develop, and implement security features for a stack built on Angular, Node.js, and PostgreSQL hosted in AWS. Key responsibilities include conducting threat modeling, reviewing code and architecture, building security automation tools, and guiding teams through the full software development lifecycle. The role is appealing due to the opportunity to pioneer security practices in a rapidly scaling environment, foster a culture of security enablement, and work with cutting-edge AI technology. The position offers a collaborative player-coach dynamic where engineers act as strategic partners rather than gatekeepers.

This senior security engineering role focuses on application security within a new, engineering-centric team at ClickUp. The position involves embedding directly into product teams to design secure solutions using Angular, Node.js, and PostgreSQL on AWS. Key responsibilities include conducting threat modeling, building security automation tools across the SDLC, and acting as a strategic partner to guide developers in shipping secure products. The role appeals to candidates seeking a high-impact environment where they can pioneer AI-driven security practices while fostering a culture of security enablement. The position offers the opportunity to shape the future of work by protecting a platform used by millions, combining technical depth with a collaborative, player-coach approach in a rapidly scaling organization.

This senior security engineering role focuses on application security within a new, engineering-centric team at ClickUp, a leading AI workspace platform. The position involves embedding directly into product engineering groups to design and build secure defenses for a stack including Angular, Node.js, and PostgreSQL on AWS. Key responsibilities include conducting threat modeling, reviewing code and architecture, developing security automation tools, and managing incident response. The role is appealing due to the opportunity to shape a security culture from the ground up while pioneering AI-driven work solutions. It offers a collaborative environment where engineers act as strategic partners rather than gatekeepers, providing significant growth potential in a fast-scaling organization.

This Level 4 Senior Network Security Consultant role serves as a Cybersecurity Architect within a Dallas-based team, focusing on the design and optimization of critical security infrastructure. The position involves managing complex email security solutions like Proofpoint, configuring web application firewalls with Imperva, and overseeing cloud security platforms such as Zscaler and Netskope. Key responsibilities include leading incident response efforts, administering enterprise PKI infrastructure, and deploying endpoint protection tools like CrowdStrike and Trellix to safeguard against emerging threats. The role appeals to experienced professionals seeking a high-impact environment where they can mentor junior staff, define security governance, and collaborate across departments to maintain robust network architectures. This contract position offers the opportunity to work with cutting-edge technologies in a dynamic security landscape.

This DevSecOps Engineer role within Maximus TCS focuses on integrating security practices into development and operations for high-security environments. The position involves managing incident response, vulnerability scanning, and penetration testing while implementing automated security frameworks and CI/CD pipelines. Key responsibilities include designing infrastructure as code solutions, maintaining proxy servers and firewalls, and conducting risk assessments to ensure compliance with strict security protocols. The role is appealing for its opportunity to work with cutting-edge cloud technologies and automation tools in a mission-critical setting. Candidates will collaborate on building resilient systems while leveraging scripting languages to streamline security workflows. The position requires active Top Secret clearance and offers a hybrid work arrangement with occasional travel for site-specific operations.