Senior Application Security Engineer (Remote)

Senior Application Security Engineer

Location: Flexible (Remote)

Type: Full-time, Permanent

Salary: Competitive; Depending on Experience – Full package includes competitive base salary, and employee benefits

OVERVIEW

Vaco Dallas is currently seeking an experienced and highly skilled Senior Application Security Engineer for a fully remote, direct hire opportunity. The ideal candidate will possess a deep understanding of application security principles and practices, with a proven track record of implementing robust security measures in diverse technical environments.

KEY RESPONSIBILITIES

• Utilize expertise to identify and mitigate open-source vulnerabilities, ensuring the integrity and security of our software products.
• Oversee approval lifecycles for application deployments, ensuring compliance with security protocols and industry standards.
• Demonstrate extensive experience in managing and securing applications in 100% cloud environments, specifically Azure and AWS.
• Exhibit versatility as an IT generalist, capable of addressing a wide range of security challenges and requirements.
• Maintain a deep understanding of compliance requirements, particularly in relation to SOX and audit procedures.
• Possess a strong CISSP certification, demonstrating advanced knowledge and expertise in information security.
• Showcase a proven track record in DevSec operations, implementing security best practices throughout the software development lifecycle (SDLC).
• Display familiarity with diverse technology stacks, leveraging security solutions to address unique challenges.
• Conduct thorough static code analysis to identify and address security vulnerabilities in applications.
• Assess and mitigate security risks across the organization, providing guidance and recommendations to stakeholders.
• Take ownership of security frameworks and information security policies, ensuring alignment with organizational objectives.
• Collaborate with product teams to integrate security into web applications, supporting secure development practices and initiatives.
• Conduct red team exercises and penetration testing to identify and address security weaknesses proactively.

REQUIRMENTS

• Bachelor’s degree in computer science, Information Security, or a related field.
• CISSP certification or equivalent strongly preferred.
• Minimum of 8+ years of experience in application security roles.
• Proficiency in static code analysis tools.
• Extensive experience with cloud platforms, particularly Azure and AWS.
• Strong understanding of compliance standards, including SOX and audit procedures.
• Demonstrated ability to implement and maintain security measures across the SDLC.
• Experience with diverse technology stacks and security solutioning.
• Excellent communication and collaboration skills, with the ability to work effectively in a team environment.

In our commitment to transparency throughout the hiring process, we provide a target annual base salary range of $130,000 – $150,000 for this position. The actual compensation offered will be determined based on factors such as (but not limited to) experience, work location, and skills. Additionally, this position is eligible for comprehensive benefits provided by the hiring employer.

Job ID: 406631