Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Application Security Engineer

Full-time

H.W. Kaufman Group

Role Description

The Application Security Engineer plays a crucial role in securing our growing portfolio of applications. This role will focus on integrating security best practices into the Software Development Lifecycle (SDLC), ensuring compliance with regulatory requirements, proactively mitigating threats, and collaborating closely with developers to enhance the overall security posture of our applications.

  • Partner with development teams to embed security best practices across the SDLC, including design, development, and deployment, and provide secure coding guidance.
  • Conduct threat modeling and security architecture reviews to identify design-level risks and implement appropriate security controls.
  • Identify, assess, and mitigate application vulnerabilities through a combination of automated (SAST/DAST) and manual code reviews, as well as penetration testing, and drive risk-based remediation.
  • Implement and manage application security tools, including SAST, DAST, Software Composition Analysis (SCA), and other security scanning solutions.
  • Ensure application security practices align with regulatory standards such as NYDFS, NIST, and OWASP guidelines.
  • Partner with DevOps, IT, and security teams to integrate security into CI/CD pipelines and engineering workflows.
  • Design and oversee the implementation of authentication, authorization, and access control mechanisms for APIs and platforms.
  • Develop and enforce secure usage standards and governance for AI tools and AI-generated code, addressing risks such as prompt injection, data leakage, insecure code generation, and model misuse, while aligning with regulatory and industry standards.

Qualifications

  • 5+ years of experience in application security, secure software development, and vulnerability management.
  • Strong knowledge of secure coding practices, OWASP Top 10, OWASP Top 10 for LLMs, MITRE ATLAS, and common security vulnerabilities.
  • Experience with containerization technologies such as Docker and Kubernetes, the principles of container operation, and their secure interaction.
  • Experience with security testing tools (e.g., Burp Suite, Fortify, Veracode, or similar).
  • Experience with Black Duck/Polaris with Apex code (Salesforce) is a plus.
  • Familiarity with DevSecOps principles and integrating security into CI/CD pipelines.
  • Direct experience with security tools such as vulnerability scanners, intrusion detection systems, and log analysis tools.
  • Understanding of regulatory frameworks and compliance requirements (e.g., NYDFS, GDPR, SOC 2).
  • Ability in scripting and automation using languages such as Python, PowerShell, or Bash and leverage AI driven tools to streamline and enhance security process and workflows.
  • Relevant certifications such as Certified DevSecOps Engineer, CISSP, OWASP certifications, GIAC GWAPT.

Company Description

H.W. Kaufman Group is a powerful global network of companies dedicated to shaping the future of insurance. With thousands of dedicated professionals across an extensive network of over 60 offices around the world, we lead by offering innovative solutions that are at the forefront of the industry. We are privately owned and thus free from the influence of Wall Street. This allows us the ability to adapt to constantly fluctuating market conditions. From brokerage, underwriting, and real estate to claims, loss control and risk management services, our depth of services is unrivaled.

Equal Opportunity Employer

The H.W. Kaufman Group of companies is an equal opportunity employer. All employment decisions are based on business needs, job requirements and individual qualifications, without regard to race, color, religion, gender, gender identity, age, national origin, disability, veteran status, marital status, pregnancy, sexual orientation, genetic information or any other status or condition protected by the laws or regulations in the locations where we operate.

In addition, Kaufman will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.

Vacancy posted 7 days ago
Similar jobs that could be interesting for youBased on the Application Security Engineer in Remote vacancy
  • Role Description We're looking for a Senior Application Security Engineer to help build and mature our application security program. You'll be a hands-on technical leader embedded across our engineering organization, working with developers to embed security into the SDLC... 
    Suggested
    Full time
    Worldwide

    Hyland

    Remote
    4 days ago
  • $157k - $216k

    Role Description AlphaSense is investing in the next generation of our Application Security capability, a continuous, AI-augmented, layered defense program built for a SaaS engineering organization where AI agents and human developers ship code side by side at high velocity... 
    Suggested
    Full time
    Remote work

    AlphaSense

    Remote
    5 days ago
  • Role Description The primary responsibility of the Application Security Engineer – Cyber Security is to design, implement, and support the company’s overall information security infrastructure. This engineer sits at the intersection of application security, platform engineering... 
    Suggested
    Full time
    Remote work

    Las Vegas Sands Corp.

    Remote
    5 days ago
  • Role Description GuidePoint Security offers an inclusive set of Application Security services helping clients implement, fine tune and run their Application Security SAST, DAST and SCA tools. Many clients need assistance with either supplementing their Application Security... 
    Suggested
    Full time
    Remote work
    Flexible hours

    GuidePoint Security

    Remote
    2 days ago
  • $97.1k - $161.8k

     ...for capturing and refining information security requirements and ensures their integration...  ...in the areas of secure coding, application authentication, encryption, and quickly...  ...areas as needed. ~Develop and implement engineering’s technical security policies and procedures... 
    Suggested
    Full time
    Work experience placement
    Worldwide

    M&T Bank

    Remote
    6 days ago
  • $180k - $200k

     ...Description Here at Virtru you'll join an innovative product security team that is helping secure some of the world's most...  ...core, functions in a wide range of threat models. As an application security engineer you will help our engineering teams maintain and develop... 
    Full time
    Flexible hours

    Virtru

    Remote
    4 days ago
  • $120k - $145k

    Role Description Parallels is seeking a highly motivated and talented Application Security Engineer to join our team. In this role, you will make security decisions that impact millions of our customers while gaining hands-on experience in exploit development and CVE discovery... 
    Full time
    Remote work

    Parallels Inc

    Remote
    19 hours ago
  • $205k - $275k

     .... We’re looking for exceptional people to help us accelerate that reality. The opportunity We're looking for a seasoned Application Security Engineer who brings the credibility of a software engineering background and the mindset of a security practitioner. You'll be embedded... 
    Work at office
    Home office
    Flexible hours
    2 days per week

    AKASA

    South San Francisco, CA
    19 hours ago
  •  ...public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a...  ...more. Who we’re looking for: We are seeking an Application Security Engineer with expertise in Static and Dynamic Application Security... 
    Contract work
    Remote work

    GrabJobs

    Irving, TX
    2 days ago
  •  ...world. Because at Valence, the work worth doing is the kind that redefines work itself. The Role We are seeking a seasoned Application Security Engineer to help us secure our products and platform that serve our Fortune500 customers. In this pivotal role, you will be... 
    Full time
    Freelance
    Work from home

    Valence

    New York, NY
    4 days ago
  • $85.7k - $125.69k

     ...provider of used and new car financing across the country.Our Engineering and Analytics Team Members utilize the latest technology to...  ...work environment and Great Place to Work culture!The Application Security Engineer is responsible for securing the software and applications... 
    Casual work
    Work at office
    Work from home
    Shift work

    Credit Acceptance

    Southfield, MI
    1 day ago
  •  ...people and we’re just getting started. About The Role Our Security Engineering team builds intelligent systems that protect Opendoor and our...  ...where they matter, not gates where they don't. As our Application Security Engineer, you'll own how we find, prioritize, and... 
    Work at office
    Monday to Friday
    Shift work

    Opendoor

    Seattle, WA
    1 day ago
  •  ...Security | Application Security Engineer SOFTSWISS is growing, and we are seeking a skilled Application Security Engineer to join our team. If you are driven by excellence and share our values, we would love to hear from you. Purpose of the role: Our goal is to make sure... 
    Local area

    Softswiss

    New York, NY
    19 hours ago
  • $96k - $146k

     ...technologies in support of U.S. National Security and Defense. For the past forty-five...  ...require U.S. citizenship for all employees. Applicants that do not meet this requirement will...  ...an immediate opportunity for a talented engineer to support our programs delivering Next-... 
    Temporary work
    For contractors
    Work experience placement
    Immediate start
    Remote work
    Flexible hours

    SciTec Incorporated

    Boulder, CO
    3 days ago
  •  ...Application Security Engineer They will need to meet the following requirements. Burp and Veracode are currently the areas of focus. ~6+ years of Information Technology experience ~3+ years of experience with supporting Static Application Security Testing (SAST... 
    Remote work

    RIT Solutions

    Huntsville, AL
    4 days ago
  • $145k - $155k

     ...weeks per quarter), leaving 5 additional remote days to be used as needed. As a key member of the Security Engineering team, this person will help lead HarbourVest’s Application Security program. The Application Security Engineer (ASE) will serve in a multi-functional role... 
    Work at office
    Local area
    Remote work
    1 day per week

    Harbourvest

    Boston, MA
    2 days ago
  •  ...Find out more about our hiring culture: Dream Team Culture Job Description At ZetaChain, we are seeking a dedicated Protocol Security Engineer to play a pivotal role in fortifying the security of our cutting-edge protocol. You will be deeply involved in the development... 
    Contract work
    Remote work
    Home office

    Blockchain Works

    San Francisco, CA
    19 hours ago
  • $160k - $220k

     ...all–driving incredible value for our customers. Join us! The Security team at Zip is responsible for protecting the confidentiality and integrity of our customers’ data. As our first Application Security Engineer, you will take on a dynamic and high impact role. You will... 
    Home office
    Flexible hours

    ZipHQ, Inc.

    San Francisco, CA
    9 days ago
  • $86.9k - $198k

     ...Application Security Engineer The Opportunity: Everyone is trying to “harness the cloud,” but not everyone knows how. As a cloud computing infrastructure architect, you know how to take advantage of cloud capabilities. On our team of experienced professionals, you’ll use... 
    Work at office
    Local area
    Remote work

    Dormont Manufacturing Company

    Fort Meade, FL
    3 days ago
  • $110k

     ...Application Security Engineer We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly technical and candidates must possess a solid understanding of the security and privacy of our company's applications... 
    Full time

    Ryder

    Phoenix, AZ
    19 hours ago
  •  ...About the role As a Security Application Engineer, you will play a key role in embedding security, compliance, and reliability into our IoT cloud applications across their full lifecycle. You combine hands‑on security engineering with process ownership and regulatory awareness... 
    Permanent employment
    Contract work
    Work from home
    2 days per week

    Daikin Group

    Cedar Grove, WI
    4 days ago
  • $135k - $200k

     ...defense, intelligence, and commercial applications. We are trusted by our customers to protect...  .... The mission of the Application Security Team is to enable developers to be highly...  ...important. As an Application Security Engineer, you will be hands-on and have wide-ranging... 
    Work experience placement
    Work at office
    Remote work
    Work from home
    Relocation package

    Dormont Manufacturing Company

    Seattle, WA
    4 days ago
  • $86.9k - $198k

     ...meet their most challenging missions. We’re looking for someone like you to help support national security.Whether modernizing legacy computing platforms and applications or creating new ones from scratch, you’ll have the latest tech and brightest teammates at your fingertips... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Waipahu, HI
    1 day ago
  •  ...About the role We're looking for a Senior Application Security Engineer to help keep Tangem's products secure. You'll focus on finding security issues in our web applications, backend services, and APIs before attackers do. You'll work closely with developers, review new... 
    Remote work

    Tangem AG

    Indianapolis, IN
    1 day ago
  • $86.8k - $198k

     ...Application Security EngineerSkip to main content#Application Security Engineer page is loaded## Application Security EngineerApplylocations: Colorado Springs, CO: Huntsville, ALtime type: Full timeposted on: Posted Todaytime left to apply: End Date: August 17, 2026 (3... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Colorado Springs, CO
    19 hours ago
  • $140k - $160k

     ...Overview Edgewater is currently seeking an Application Security Engineer who will be a hands‑on subject matter expert in Microsoft Azure cloud technologies, application security, security architectures, security tools, and methodologies. The Application Security Engineer... 
    Contract work
    Local area
    Remote work

    Edgewater IT LLC Defunct

    Washington DC
    19 hours ago
  • $86.9k - $198k

     ...Application Security Engineer The Opportunity: Everyone is trying to "harness the cloud," but not everyone knows how. As a cloud computing infrastructure architect, you know how to take advantage of cloud capabilities. On our team of experienced professionals,... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    BOOZ, ALLEN & HAMILTON, INC.

    Honolulu, HI
    3 days ago
  •  ...across 17+ industries. We rank among the leaders in areas like application development and AI/ML, and our people-first culture has...  ...you! ABOUT THE ROLE We are looking for a Middle Application Security Engineer to execute hands‑on DevSecOps work across CI/CD pipeline security... 
    Work at office
    Remote work
    Flexible hours

    AgileEngine

    New York, NY
    1 day ago
  • $86.8k - $198k

     ...Job Number: R0240446 Application Security Engineer The Opportunity Everyone is trying to "harness the cloud," but not everyone knows how. As a cloud computing infrastructure architect, you know how to take advantage of cloud capabilities. On our team of experienced professionals... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Phase2 Technology

    Huntsville, AL
    4 days ago
  •  ...customer satisfaction and retention. Software Engineer – Full Stack Developer Develop and maintain scalable web applications using .NET technologies and modern front-end...  ...projects to improve performance, scalability, security, and reliability. Build resilient... 
    Contract work
    Remote work

    Tyler Technologies

    Troy, MI
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Application Security Engineer. Be the first to apply!