Senior Application Security Engineer (REMOTE)
Amerisure Mutual Insurance Company
Amerisure creates exceptional value for its partners, policyholders, and employees. As a property and casualty insurance company, Amerisure's promise to our partner agencies and policyholders begins with a comprehensive line of insurance products designed to protect businesses, as well as the health and safety of every employee. With an A.M. Best "A" (Excellent) rating, Amerisure serves mid-sized commercial enterprises focused in construction, manufacturing and healthcare. Ranked as one of the top 100 Property & Casualty companies in the United States, we proudly manage nearly $1 Billion of Direct Written Premium and maintain $1.21 billion in surplus. Amerisure is hiring!! This role can sit remote . We're looking for a Senior Application Security Engineer who can take ownership of security initiatives, shape our strategy, and partner closely with engineering teams to safeguard our applications from the ground up. The ideal candidate will possess the following skill set.
Summary Statement The Senior IT Security Engineer designs, implements, and maintains security controls to protect the organization's systems and data. This role leads security monitoring, vulnerability management, and incident response efforts, while embedding security throughout the SDLC and integrating testing capabilities into CI/CD pipelines. The engineer supports secure development practices and conducts application and API penetration testing. Working closely with development, QA, DevOps, and architecture teams, this role strengthens the security posture of mission-critical SaaS and hybrid cloud applications. The Senior Engineer also advises leadership on security strategies, emerging technologies, and alignment with business goals, ensuring innovative, compliant, and effective security solutions. Essential Tasks/Major Duties
#LI-Remote Just as we are committed to creating exceptional value for our Partners For Success® agencies and policyholders, Amerisure also remains committed to being an employer of choice. We reinforce this commitment by adhering to an Employee Value Proposition that, in part, is provided through a competitive total rewards package. This package includes competitive base pay, performance-based incentive pay, comprehensive health and welfare benefits, a 401(k) savings plan with profit sharing, and generous paid time off programs. We also offer flexible work arrangements to promote work-life balance. Recognized as one of the Best and Brightest® Companies to Work For in the Nation and one of Business Insurance magazine's Best Places to Work in Insurance, we provide a workplace that fosters excellence and professional growth. If you are looking for a collaborative and rewarding career, Amerisure is looking for you. Amerisure Mutual Insurance Company is an Equal Employment Opportunity employer. Amerisure provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (to include sexual orientation and gender identity), national origin, age, disability, genetic information, veteran status, or any other protected characteristic under applicable federal, state, or local laws. Amerisure complies with all applicable laws governing nondiscrimination in employment in all locations where the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Amerisure prohibits harassment or discrimination of any kind and is committed to maintaining a workplace free from unlawful harassment or discrimination. Amerisure prohibits retaliation against anyone who reports discrimination, participates in an investigation, or opposes unlawful practices. Any improper interference with an employee's ability to perform their job duties may result in disciplinary action, up to and including termination.
Summary Statement The Senior IT Security Engineer designs, implements, and maintains security controls to protect the organization's systems and data. This role leads security monitoring, vulnerability management, and incident response efforts, while embedding security throughout the SDLC and integrating testing capabilities into CI/CD pipelines. The engineer supports secure development practices and conducts application and API penetration testing. Working closely with development, QA, DevOps, and architecture teams, this role strengthens the security posture of mission-critical SaaS and hybrid cloud applications. The Senior Engineer also advises leadership on security strategies, emerging technologies, and alignment with business goals, ensuring innovative, compliant, and effective security solutions. Essential Tasks/Major Duties
- Configure, implement, and maintain security systems with a hands-on approach to ensure the integrity, availability and resilience of the organization's IT infrastructure, applications and data.
- Serve as a subject matter expert for application, API, and integration security across the enterprise. Establish and embed secure development requirements, best practices, patterns, and guardrails (Left Shift) across platforms, technology stacks, and development teams to enhance the overall application and API security posture.
- Define, design, implement, and continuously improve application security processes, tools, and metrics. Integrate and optimize SAST, SCA, IAST, DAST, and secrets detection tools within CI/CD pipelines, and monitor, track, and report application and API security metrics to leadership.
- Conduct comprehensive application and API security reviews, vulnerability assessments, and penetration testing, actively configuring and fine-tuning security tools to identify and remediate gaps.
- Collaborate with cross-functional teams to enforce security best practices and ensure compliance with relevant standards and frameworks (e.g., NIST CSF, NY DFS, MI DIFS, OWASP, HIPAA/HTRUST), configuring security solutions to meet evolving business and regulatory requirements.
- Lead incident response and digital forensics investigations, providing technical expertise to analyze cyber events and implement effective remediation actions that minimize operational impact.
- Mentor and guide security team members, sharing knowledge and expertise in application and API security, threat analysis, vulnerability management, cloud security, and cryptography, while fostering a collaborative, learning-driven team culture.
- Bachelor's degree or equivalent combination of education and experience.
- 7+ years of experience in Application and API Security within a DevSecOps environment.
- Required certifications include at least one CISSP, CSSLP, CCSP, GSEC, CEH, CISM, or CRISC, in addition to platform-specific certifications (AWS, Microsoft, Cisco, etc.) or domain specific certifications (OSWE, OSCP, GWAPT, or GWEB).
- Experience in Property & Casualty insurance or other regulated industries preferred.
- Proven experience securing SaaS and custom applications in complex multi-cloud environments, applying security best practices and compliance frameworks.
- Expert knowledge of secure SDLC principles, application and API security, container security, and secure coding practices. Deep familiarity with OWASP Top 10, OWASP API Security Top 10, and CWE in DevOps environments using TeamCity, Azure Pipelines, GitHub Actions, and Bitbucket Pipelines.
- Extensive experience automating security scans and integrating SAST, SCA, IAST, DAST, and secrets detection tools into CI/CD pipelines.
- Proficiency in managing application security tools, including SonarQube, Black Duck, Synopsys Seeker, Snyk, and Wiz Code.
- Strong understanding of modern authentication and authorization protocols, including OAuth2, OIDC, JWT, and mTLS.
- Knowledge of cryptographic protocols and standards such as SSL/TLS, SSH, PKI, and emerging quantum-resistant encryption techniques.
- Solid understanding of security standards and frameworks, including NIST CSF, NY DFS, MI DIFS, HIPAA/HITECH, MITRE ATT&CK, and domain-specific regulatory requirements.
- In-depth knowledge of common attack vectors and tactics, with a focus on proactive defense and risk mitigation.
- Proficient in vulnerability assessment and penetration testing tools, capable of identifying, analyzing, and remediating vulnerabilities across applications and systems.
- Familiarity with enterprise platforms such as Guidewire, Salesforce, Databricks, and SnapLogic is preferred.
- Skilled in leading team initiatives using project management and Agile methodologies.
- Excellent communication skills to clearly articulate security risks, policies, and remediation strategies to both technical and non-technical stakeholders.
#LI-Remote Just as we are committed to creating exceptional value for our Partners For Success® agencies and policyholders, Amerisure also remains committed to being an employer of choice. We reinforce this commitment by adhering to an Employee Value Proposition that, in part, is provided through a competitive total rewards package. This package includes competitive base pay, performance-based incentive pay, comprehensive health and welfare benefits, a 401(k) savings plan with profit sharing, and generous paid time off programs. We also offer flexible work arrangements to promote work-life balance. Recognized as one of the Best and Brightest® Companies to Work For in the Nation and one of Business Insurance magazine's Best Places to Work in Insurance, we provide a workplace that fosters excellence and professional growth. If you are looking for a collaborative and rewarding career, Amerisure is looking for you. Amerisure Mutual Insurance Company is an Equal Employment Opportunity employer. Amerisure provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (to include sexual orientation and gender identity), national origin, age, disability, genetic information, veteran status, or any other protected characteristic under applicable federal, state, or local laws. Amerisure complies with all applicable laws governing nondiscrimination in employment in all locations where the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Amerisure prohibits harassment or discrimination of any kind and is committed to maintaining a workplace free from unlawful harassment or discrimination. Amerisure prohibits retaliation against anyone who reports discrimination, participates in an investigation, or opposes unlawful practices. Any improper interference with an employee's ability to perform their job duties may result in disciplinary action, up to and including termination.
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Senior Application Security Engineer (REMOTE) in United States vacancy
$157k - $216k
...the next generation of our Application Security capability, a continuous, AI... ...program built for a SaaS engineering organization where AI agents... ...side at high velocity. As a Senior AI Application Security... ...role on a senior IC team. ~Remote-first, high autonomy, competitive...Remote workSeniorFull time- Role Description Our team is growing and we're hiring a Senior Application Security Engineer to join our engineering team and enable our next phase of growth. Canary's engineering team is fully remote! This role focuses on embedding security into the software development...Remote workSeniorFull time
$140k - $160k
...Senior Application Security Engineer Chicago, Illinois 100% Remote Full Time $140k - $160k A consulting company is looking to bring on a hands on a Senior Application Security Engineer to work with clients on new development. You'll perform code reviews, conduct...Remote workSeniorFull time- Role Description GuidePoint Security offers an inclusive set of Application Security services helping clients implement, fine tune and run their Application... ...IAST, and/or RASP tooling preferred Benefits ~Remote workforce primarily (U.S. based only, some travel may...Remote workSeniorFull timeFlexible hours
$155k - $175k
Role Description The Senior Application Security Engineer is a hands-on technical leader responsible for securing Lumin Digital’s B2B2C SaaS platform... ...the ability to operate independently in a fast-moving, remote-first environment. Qualifications ~Bachelor’s in...Remote workSeniorFull timeFlexible hours$180k - $205.5k
Role Description Spring Health is looking for a Senior Application Security Engineer II to join our growing Application Security team. Reporting to the... ...to the next level. This is a full-time, fully remote position open to candidates residing within the United States...Remote workSeniorFull timeWork experience placementSleeping nights$325k - $405k
A leading AI research firm in San Francisco is seeking a Security Engineer for Application Security. The role involves identifying and mitigating security vulnerabilities, conducting assessments, and developing security tools. Ideal candidates will have extensive experience...Remote jobSenior- ...Senior Application Security Engineer - Moveworks Are you interested in being part of Application Security efforts at Moveworks? Do you enjoy collaborating closely with engineers to develop secure solutions from the ground up and ensure they remain robust over time?...Remote workSenior
- ...Overview Job Locations: 100% Remote Huntsville, AL. This role is 100% remote; candidates will need to obtain an SEC Public... ...experience ~3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST),...Remote workSeniorOverseas
- ...We are seeking a Sr. Application Security or DevSecOps Engineer with broad set of experiences to have an early and formative impact in many areas of the... ...means you’ll gain experience in every aspect of crypto. Remote Flexibility: Enjoy the freedom and flexibility of a...Remote workSeniorContract workFlexible hours
$60 - $62 per hour
...pay range $60.00/hr - $62.00/hr Hello We are looking for Senior Application Security Engineers Locations: Hybrid Roles in Charlotte, NC, Westlake, TX,... ...Chandler, AZ and Minneapolis, MN – 3 days Onsite and 2 days Remote Pay Rate: $60/hr - $62/hr on W2 Duration: 12+ MONTHS...Remote workSeniorContract workH1b- ...holidays , to support a 24/7 environment. Respond to security incidents and operational escalations outside of... ...containment, eradication, and post-incident reviews. Senior Application Security Engineer - Blue Team Who You Are A defensive security...Remote workSeniorNight shift
$140k - $200k
...range of simple, reliable, and secure crypto products and services to... ..., reach, and impact. Department Application Security Role Senior Application Security Engineer As a Senior Application Security... ...collaboration with the flexibility of remote work. Expectations may vary by...Remote workSeniorWork at officeFlexible hours- ...Software Guidance & Assistance, Inc., (SGA), is searching for a Senior Application Security Engineer for a CONTRACT assignment with one of our premier Regulatory clients in Rockville, MD. The main function of senior application security engineer is to...Remote workSeniorContract work
$5,250 per month
...values collaboration, creativity, and excellence. As a Senior Application Security Engineer you will help ensure the security and integrity of our applications... ..., we empower 1,500+ teammates across the U.S. and remote locations. What you’ll get 18 days PTO* 11 holidays (8...Remote workSenior16 hoursFull timeTemporary workLocal area$192k - $240k
...Senior Application Security Engineer Brex is the intelligent finance platform that enables companies to spend smarter and move faster in more than 200 markets. By combining global corporate cards and banking with intuitive spend management, bill pay, and travel software...Remote workSeniorWork experience placement- Blue Cross and Blue Shield of Nebraska seeks a Senior Application Security Engineer to lead technical efforts in ensuring secure application development... ...to enhance security solutions. This position allows for remote flexibility, requiring one day a week in the Omaha...Remote jobSeniorWork at office1 day per week
- ...Senior Application Security Engineer Poland The Tripadvisor Group connects people to experiences worth sharing, and aims to be the world's most... ...security within the organisation. This role is based remotely in Poland. We hire based on a permanent contract (UoP)....Remote workSeniorPermanent employmentContract workWorldwideFlexible hours
$143k - $224k
...deploy, monitor, and scale robot fleets. About The Role As a Senior Application Security Engineer, you will be crucial in integrating security controls... ...as AI in security tooling) is a plus. This is a fully remote role with the option to work hybrid if a commutable distance...Remote workSeniorFull timeTemporary workRelocation packageFlexible hours$111k - $144.4k
...Sr. Application Security Engineer The Sr. Application Security Engineer is responsible for validating that application services are designed and... ...Wherever It Leads, Whatever It Takes® - No matter how remote, complex, or unexpected. Our commitment never wavers. Hire...Remote workSeniorTemporary workWork experience placement- ...Senior Application Security Engineer Intapp is growing our application security team and is looking for a Senior Application Security Engineer. You'll focus on a subset of our products to understand them deeply and help development teams build products that are secure...Remote workSeniorHome officeFlexible hours
$146k - $175k
...About the Opportunity Artera is seeking a hands‑on Senior Application Security Engineer, AI & Product Security to work alongside our AI builders and... ...based in Seattle, WA. In‑person collaboration is expected. Remote candidates must reside in one of the hybrid office...Remote workSeniorFull timeTemporary workSummer holidayWork at officeImmediate startFlexible hoursShift work- ...in Plano, TX is seeking an experienced Application Security Analyst to enhance security within... ...of experience in DevOps and security engineering, holds a degree in Computer Science or... ...hybrid work model, with 3 days onsite and 2 days remote. #J-18808-Ljbffr IVID TEK INCRemote workSenior
$180k - $230k
...Overview Senior Application Security Engineer role at GlossGenius. GlossGenius is building an ecosystem enabling entrepreneurs to succeed, offering... ...the earliest design discussions. This role can be based remotely in the San Francisco Bay Area OR Hybrid in our NYC headquarters...Remote workSeniorWork at officeHome officeFlexible hours- ...career and make a powerful impact in our community. The Senior Application Security Engineer will serve as a technical leader and owner of company... ...distance of the Omaha, Nebraska office. This position allows remote flexibility but will have 1 day per week in the office....Remote workSeniorWork at officeShift work1 day per week
- ...Our platform protects email, data, applications, and networks with innovative solutions... ...yourself at Barracuda As a Senior Application Security Engineer, you’ll help shape the future of our... ...benefits ~Volunteer opportunities #LI-remote Job ID: 27-0245...Remote workSeniorWorldwideFlexible hours
- ...own bar on how to use it well. As a fully remote company (even before COVID!), we welcome applicants from almost anywhere. Our team collaborates... .... The Role: Monarch is seeking a Senior Application Security Engineer to join our Security Engineering team during...Remote workSeniorWork at officeImmediate startWork from homeWeekend work
$180k - $210k
...and selling experience into a simple, secure, and enjoyable process. Our SMB and... ...YOU'LL WORK ON We're hiring a Senior Application Security Engineer to join a small, high-leverage AppSec... ...not required While this role is remote work eligible, we have three office...Remote workSeniorFull timeWork at officeFlexible hours- ...illicit activity and global security threats. At TRM, you'll join... ...enforcement, data science, engineering, and financial intelligence,... ...business. We are looking for an Application Security Engineer to build... ...as a Global Team As a remote-first company, TRM Labs is built...Remote jobSeniorFull timeSummer workImmediate start
$156.9k - $229.7k
Role Description As a Senior Application Security Engineer, you will be a core technical advisor for securing GFiber’s applications and development ecosystems. You will partner closely with engineering teams to: ~Review code, secure software delivery pipelines, and design...SeniorFull time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Application Security Engineer (REMOTE). Be the first to apply!
Related searches
- senior application support engineer United States
- application performance engineer United States
- application support engineer United States
- network applications engineer United States
- field applications engineer United States
- application security engineer United States
- senior application security engineer United States
- technical application engineer United States
- application engineer United States
- project application engineer United States






