Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Application Security Engineer

MicroStrategy

Company Description

Strategy (Nasdaq: MSTR) is at the forefront of transforming organizations into intelligent enterprises through data-driven innovation. We don't just follow trends-we set them and drive change. As a market leader in enterprise analytics and AI software, we've pioneered the BI and analytics space, empowering people to make better decisions and revolutionizing how businesses operate. We are now also at the forefront of AI disruption, providing data via our enterprise semantic layer to AI agents, tools, and platforms.

But that's not all. Strategy is also leading a groundbreaking shift in digital assets, adopting bitcoin as our primary treasury reserve asset in 2020. Since then, we have issued innovative bitcoin-backed securities and have been the leader in bitcoin treasury companies. This visionary move has helped us build a fortress balance sheet, and is solidifying our position as a forward-thinking, innovative force in the market.

Our people are the core of our success. At Strategy, you'll join a team of smart, creative minds working on dynamic projects with cutting-edge technologies. We thrive on curiosity, innovation, and a relentless pursuit of excellence.

Our corporate values-bold, agile, engaged, impactful, and united-are the foundation of our culture. As we lead the charge into the new era of AI and financial innovation, we foster an environment where every employee's contributions are recognized and valued.

Join us and be part of an organization that lives and breathes innovation every day. At Strategy, you're not just another employee, you're a crucial part of a mission to push the boundaries of analytics and redefine financial investment.

Job Description

Application Security Engineer

Strategy (Nasdaq: MSTR) * Tysons Corner, VA * Full-time, 5 days/week on-site

Job Description

Join Strategy's IT Security group as an Application Security Engineer and play a crucial role in safeguarding Strategy's software applications by deploying AI-powered security tooling to protect the software development lifecycle at scale. You will be responsible for integrating security practices throughout the SDLC, ensuring our software products are resilient against vulnerabilities.

Responsibilities

  • AI Security Governance: Evaluate and establish guardrails for the secure use of AI coding assistants (e.g., Copilot, Cursor, Claude) within the engineering organization, including policy development around AI-generated code review, training data exposure risks, and prompt injection vulnerabilities in AI-integrated applications.

  • Secure SDLC Integration: Work closely with development teams to integrate security into the SDLC, including threat modeling, secure code reviews, and security testing.

  • Vulnerability Management: Identify, triage, and remediate security vulnerabilities through static and dynamic application security testing (SAST/DAST) and software composition analysis (SCA) tools.

  • Security Assessments & Penetration Testing: Conduct manual and automated penetration testing of web, mobile, and cloud applications to detect security flaws.

  • Secure Code Review: Analyze source code using both manual review and AI-assisted code analysis tools (e.g., GitHub Copilot Autofix, Semgrep, or similar) to surface vulnerabilities earlier in the development cycle and deliver actionable, in-context remediation guidance to developers.

  • Threat Modeling & Risk Analysis: Perform threat modeling to anticipate potential attack vectors and improve security architecture.

  • DevSecOps Enablement: Support and enhance DevSecOps initiatives by integrating AI-assisted security automation within CI/CD pipelines, including AI-powered SAST/DAST tools and LLM-based code scanning to accelerate vulnerability detection at the point of commit.

  • Incident Response & Remediation: Assist in investigating security incidents related to applications and work with engineering teams to remediate threats.

  • Security Awareness & Training: Educate and mentor developers on OWASP Top 10, SANS 25, and other security best practices.

Qualifications
  • Bachelor's degree in Computer Science, Engineering, or related field

  • Minimum 2 years of software development or software security experience in an agile environment

  • Hands-on experience applying Generative AI and/or ML to security use cases-such as vulnerability triage, threat detection, or secure code review automation-and a strong drive to stay current as AI security tooling evolves.

  • Hands-on experience with SAST, DAST, IAST, and SCA tools (e.g., Checkmarx, Fortify, Veracode, SonarQube, Burp Suite, ZAP)

  • Fluent in one or more programming languages, such as Python, Java, JavaScript

  • Strong knowledge of secure coding principles and application security frameworks

  • Familiarity with security tools (e.g., static and dynamic analysis tools, vulnerability scanners)

  • Understanding of security standards and regulations (e.g., OWASP, NIST)

  • Experience with cloud security best practices in AWS, Azure, or GCP

  • Familiarity with AI/LLM-specific security risks including prompt injection, model poisoning, insecure output handling, and the OWASP Top 10 for LLM Applications.

  • Strong work ethic with a commitment to meeting business needs and effectively collaborating with global colleagues

  • Effective interpersonal skills; ability to collaborate successfully with both technical and non-technical stakeholders

  • Ability to articulate complex technical concepts with clarity, supported by effective written and verbal communication skills

Additional Information

Strategy is an equal opportunity employer. All applicants will receive consideration for employment without regard to race, creed, color, religion, national origin, gender, sex, sexual orientation, gender identity, disability, veteran status, age, genetic information, or any other legally-protected basis.

Strategy provides reasonable accommodation for qualified individuals with disabilities in the hiring process. If you have any difficulty using our online system and you need an accommodation due to a disability, you may contact us about your interest in employment View email address on click.appcast.io.

Visit Strategy's Careers page for additional information.

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Application Security Engineer in Falls Church, VA vacancy
  •  ...VA Contract What You'll Do: Collaborate with a team of engineers to implement *** specific security policies in the CI/CD security tools including but not limited to SAST, DAST and SCA applications. Work with Development, DevOps and Security teams to... 
    Suggested
    Contract work
    Work experience placement

    US Tech Solutions

    Arlington, VA
    3 days ago
  • $160k

     ...VISA CANDIDATES FOR THIS ROLE! Required Qualifications: Minimum of 5 years experience working "hands-on" in application security engineering Hands-on experience with Fortify, Veracode, Tenable, Black Duck, or similar platforms Hands-on experience with... 
    Suggested
    2 days per week

    Griffin Global Systems Inc

    Herndon, VA
    4 days ago
  •  ...Job Description Veilant is looking for an Application Security Engineer to join our InfoSec team and help validate, secure, and continuously improve software developed by internal and partner engineering teams. This role is ideal for someone who combines a software engineering... 
    Suggested
    Work at office
    Flexible hours

    Ridgeline International, LLC

    Falls Church, VA
    2 hours ago
  •  ...Location- Hybrid in Memphis, TN, Addison, TX, or McLean, VA. Rate- $80-90/hr . ON W2 As Senior Lead Engineer for Application Security Architecture team, you will work closely with application team to help implement security solutions that are tailored... 
    Suggested
    Work experience placement

    3B Staffing LLC

    McLean, VA
    13 hours ago
  • Responsible for leading application security engineering efforts, designing scalable security architectures, performing advanced risk assessments, integrating security across the SDLC, driving AI‑related security controls, evaluating vendor solutions, scaling automation... 
    Suggested

    Bloomberg Industry Group

    Arlington, VA
    1 day ago
  • Integral Federal, Inc. is seeking an AI-Advanced Technician to provide AI application and infrastructure support for the Defense Nuclear Facilities Safety Board (DNFSB) network. Responsibilities include designing and developing AI applications and implementing machine learning... 

    Integral Federal, Inc.

    Mc Lean, VA
    2 days ago
  •  ...Application Security Engineer Comtech is a woman-owned small business founded in 1998 and headquartered in Reston, VA. We offer IT solutions across the disciplines of program/project management, applications development, infrastructure, Cyber security, and enterprise... 

    Comtech LLC

    Washington DC
    13 hours ago
  •  ...Razor is looking for an Application Security Engineer to support the Defense Client Data Center (DMDC) Cyber PRIMES program by integrating security throughout the software development lifecycle and protecting enterprise applications supporting critical Department of... 
    Remote work
    Flexible hours

    Razor Talent

    Alexandria, VA
    4 days ago
  •  ...Job Title Must Have:- • Seeking candidates with solid expertise in manual web application penetration testing and manual secure code review. • Expertise in performing manual test case scenarios is a must. • Identification of vulnerabilities in source codes manually... 

    Yochana

    Washington DC
    2 days ago
  •  ...Application Security Engineer Braintrust is the AI observability platform. By connecting evals and observability in one workflow, Braintrust gives builders the visibility to understand how AI behaves in production and the tools to improve it. Teams at Notion, Stripe... 
    Flexible hours

    Brain Trust Inc

    Washington DC
    4 days ago
  •  ...Senior Application Security Engineer Come join our passionate team! Barracuda is a leading cybersecurity company providing complete protection against complex threats. Our platform protects email, data, applications, and networks with innovative solutions, and a managed... 
    Worldwide
    Flexible hours

    Barracuda Networks

    Washington DC
    4 days ago
  • $140k - $160k

    Location: Washington DC (US-DC-Washington) Overview Edgewater is currently seeking an Application Security Engineer who will be a hands‑on subject matter expert in Microsoft Azure cloud technologies, application security, security architectures, security tools, and methodologies... 
    Contract work
    Local area
    Remote work

    Edgewater Federal Solutions

    Washington DC
    1 day ago
  • Senior Application Security Engineer (WAF) 3956 Get AI-powered advice on this job and more exclusive features. Direct message the job poster from Tier4 Group About the Role Job Title: Sr. Application Security Engineer Location: Greater DC Area (2 days per week onsite hybrid... 
    Permanent employment
    Full time
    2 days per week

    Tier4 Group

    Washington DC
    1 day ago
  • $150k - $173k

    The Nuclear Company is seeking an experienced Application Security Engineer to help secure vital software and data systems. You will work closely with product and platform engineering teams to embed security into all stages of software development. This role is suited for... 

    The Nuclear Company

    Washington DC
    1 day ago
  •  ...your expertise and challenge your skills in this exciting IT Security Engineering opportunity! We are seeking an experienced IT Security...  ...Department. In this role, you will provide IT security support for applications and software systems in all platforms as well as providing... 
    Work experience placement

    Eliassen Group

    Washington DC
    1 day ago
  • $150k - $173k

     ...nuclear industry toward rapid development in America and globally. About the role The Nuclear Company is searching for an Application Security Engineer to help secure the software, data systems, and developer workflows that power our Nuclear Operating System, internal... 
    Bi-weekly pay
    Work at office

    The Nuclear Company

    Washington DC
    1 day ago
  • $166k - $200k

     ...military in months, not years. About The Team The Technical Security (TechSec) team within Anduril’s Corporate Security Program...  ...global landscape. About The Job The Senior Technical Security Application Engineer, Secured Spaces, is the technical authority for the design,... 
    Full time
    Contract work

    Anduril Industries

    Washington DC
    1 day ago
  • Eliassen Group is seeking an experienced IT Security Engineer in Washington DC to provide security support for applications across various platforms. The role involves defining security frameworks, conducting penetration tests, and ensuring compliance with security standards... 

    Eliassen Group

    Washington DC
    1 day ago
  • $66.59k - $110k

     ...Application Engineer Tyler Technologies is seeking an application engineer to design, develop, and support high-performance web-based applications using our low‑code platform for business process management. In this role you will work closely with cross‑functional teams... 
    Work experience placement
    Local area

    Tyler Technologies

    Herndon, VA
    4 days ago
  •  ...implementing software solutions, troubleshooting production issues, and automating deployment processes using a range of modern tools. Applicants should have a strong knowledge of Python, Linux, and containerization technologies. We offer competitive salaries and benefits,... 

    bcmcllc

    Washington DC
    1 day ago
  • $115k - $150k

     ...safer. As a global leader in innovative security technology, we help businesses and law...  ...innovation, trust, and collaboration. From engineering to sales and support, every role...  ...something that matters. The Lead Security Application Engineer also internally known as our Lead... 
    Full time
    Worldwide
    Flexible hours

    3Si Security Systems

    Alexandria, VA
    17 hours ago
  • Application Cyber Security Engineer Elite Technical is seeking a Software Focused Cyber Security Engineer to support our customer with DevSecOps, DevOps, AWS Cloud Security, Cloud Migration related tasks. Although this position is primarily remote, monthly visits to... 
    Contract work
    Work at office
    Remote work

    Elite Technical

    Reston, VA
    15 days ago
  •  ...skills and experience managing complex programs in a litigation environment. Responsibilities include developing and maintaining applications, translating requirements, and refining programs to enhance efficiency. The role requires substantial programming experience and... 
    Full time

    CGS Federal (Contact Government Services)

    Arlington, VA
    1 day ago
  • A leading financial institution is seeking a Remote Engineer III for Hogan Applications, responsible for technical analysis, design, and implementation within a critical banking environment. Candidates should have extensive experience in Hogan architecture and application... 
    Remote job

    PenFed Credit Union

    Mc Lean, VA
    3 days ago
  • $89.6k - $218.2k

    Senior Forward Deployed Application Engineer Category: Software Development/ Engineering Main location: United States, Virginia, Arlington...  ...existing workflows; the primary focus is building maintainable, secure, integrated solutions. This position is located in... 
    Full time
    Local area

    CGI Technologies and Solutions, Inc.

    Arlington, VA
    1 day ago
  •  ...software solutions that enable military operators, national security agencies, spectrum regulators, and system integrators to...  ...CRFS seeks a versatile and proactive Senior Field Applications Engineer (FAE) to serve as the primary technical bridge between our... 
    Work at office
    Remote work
    Relocation
    Flexible hours

    Motorola Solutions

    Reston, VA
    2 days ago
  • $47.85 - $57.85 per hour

     ...mutually agreeable solutions to close workflow gaps. Involves design, building, testing, and implementation of Epic integration application systems. Works with clinicians to create or adapt written protocols. Resource should able to troubleshoot the issues and provide... 
    Hourly pay
    Work experience placement
    Live in
    Work at office
    Local area
    Flexible hours

    Accenture

    Arlington, VA
    3 days ago
  • $85k - $120k

     ...reporting and troubleshooting purposes. Work with our sales engineering team to ensure the successful operation of our partner and client...  ...for this position. Job Details Seniority level: Not Applicable Employment type: Full‑time Job function: Information Technology... 
    Full time
    Worldwide
    Monday to Friday
    Weekend work

    Cvent

    Mc Lean, VA
    1 day ago
  • $85k - $120k

    A leading event technology provider in Virginia is seeking a full-time Software Support professional. The role includes providing software support, troubleshooting technical issues, and working with technical teams for integrations. Ideal candidates should have a BS in ...
    Full time

    Cvent

    Mc Lean, VA
    1 day ago
  • We have open role for " Application Support Engineer" for one our direct clients and it's W2 requirement. Interested candidates please share your resume to ****@*****.*** Location: Hybrid, McLean, VA Duration: Full-time Experience: 10+ years Required... 
    Full time

    Zillion Technologies

    Mc Lean, VA
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Application Security Engineer. Be the first to apply!