Senior Application Security Engineer
Monarch Money
About Us:
Monarch is a powerful, all-in-one personal finance platform designed to help make the complexity of finances feel simple again. Since launching in 2021, we've become the top-recommended personal finance app by users and experts. Our goal? To take the stress out of finances so our members can focus on what truly matters.
We are a team of do-ers led by experienced entrepreneurs who are passionate about helping our members reach their financial goals. We're hyper focused on building a product people love, and on finding every edge that helps us do that better. AI is core to how we operate: every person on the team uses it as a partner to sharpen judgment, move faster, and expand what's possible. We're not looking for tool mastery, we're looking for fluency and curiosity. What matters is that AI is part of how you work today and that you're actively raising your own bar on how to use it well.
As a fully remote company (even before COVID!), we welcome applicants from almost anywhere. Our team collaborates synchronously mostly from 9 AM – 2 PM PT and embraces asynchronous work to stay connected across time zones.
Join us on our mission to transform lives by simplifying money, together.
The Role:
Monarch is seeking a Senior Application Security Engineer to join our Security Engineering team during a period of rapid growth. Reporting to the Head of Engineering Infrastructure, you will be a hands-on practitioner embedded across our product and engineering teams — conducting application security reviews, executing on vulnerability management, and applying and improving our AppSec and AI security practices as Monarch scales.
As a key contributor on the Foundations security team, you'll work directly with product engineers to identify and close security gaps, perform and improve SAST/DAST operations, and apply AI security review processes across Monarch's growing LLM-integrated and agentic product surface. This role is critical in ensuring our application layer remains secure and resilient as we handle increasingly sensitive financial data for over a million users.
What You'll Do:
Conduct application security reviews — threat modeling, code review, and risk assessment — for new features and major product changes across Monarch's Django/Python stack
Perform and improve SAST/DAST operations including triage, validation, and remediation tracking of findings in CI/CD pipelines
Work through the vulnerability backlog with urgency — maintaining triage criteria, remediation tracking, and escalation paths in partnership with engineering squads
Perform and coordinate penetration testing and security assessments against Monarch's web and API surfaces
Apply and improve AI security review processes for LLM-integrated features and agentic attack surfaces — covering prompt injection, data leakage, model abuse, and supply chain risk
Build and maintain security automations and AI-powered tooling, and define and assess security requirements for AI workflows and agentic systems.
Participate in the weekly security on-call rotation
What You'll Bring:
5+ years in security engineering with demonstrated depth in Application and AI security — threat modeling, SAST/DAST, secure code review, and vulnerability management
Proficiency in Python and strong understanding of web application security (OWASP Top 10, API security, auth/authz patterns)
Hands-on experience with application security tooling — Semgrep, Burp Suite, Nuclei, or equivalents
Familiarity with AI/ML security risks — prompt injection, model abuse, agentic attack surfaces, or LLM supply chain risk
Transformative AI fluency — actively uses AI tools to accelerate security work and build automation
Nice to Haves:
Experience in fintech or with financial data security requirements
Familiarity with SOC 2, NIST CSF, or similar compliance frameworks
Cloud security experience (AWS preferred) — IAM, container security, ECS/EKS
Relevant certifications: OSCP, BSCP, CSSLP, CISSP, or equivalent
Detection engineering and incident response experience
Additional offensive security experience — red teaming, bug bounty, or broader penetration testing beyond web/API surfaces
Typical Process:
Recruiter Video Call
Hiring Manager Video Call
Take Home Assignment
Virtual 'Onsite' Round (2–4 interviews)
Reference Checks
Offer!
#LI-DNI
Benefits :
Work wherever you want! As a fully remote company with no central office, we want you to work wherever you are happiest and most productive. Whether that’s out of your home, a co-working space, or elsewhere.
Competitive cash and equity compensation in a hyper growth, early stage company .
Stipend to set-up your ideal working environment.
Competitive Benefit Plans for employees based on your location (e.g. in the US we offer: Medical, dental and vision benefits and the ability to contribute to a 401k plan).
Unlimited PTO.
3 day weekend every month! We take off the “First Friday” every month to focus on rest, recuperation, or just having fun!
Equal Opportunity & Non-Discrimination
We are an equal opportunity employer and value diversity. We do not discriminate on the basis of race, religion, color, national origin, sex (including pregnancy and gender identity), sexual orientation, age, marital status, veteran status, disability status, or genetic information.
Applicant Notices
California & San Francisco: Pursuant to the California Fair Chance Act and the San Francisco Fair Chance Ordinance, qualified applicants with arrest and conviction records will be considered for employment. We comply with all applicable fair chance hiring laws.
$140k - $160k
...Senior Application Security Engineer Chicago, Illinois 100% Remote Full Time $140k - $160k A consulting company is looking to bring on a hands on a Senior Application Security Engineer to work with clients on new development. You'll perform code reviews,...SeniorFull timeRemote work- ...Senior Application Security Engineer Come join our passionate team! Barracuda is a leading cybersecurity company providing complete protection against complex threats. Our platform protects email, data, applications, and networks with innovative solutions, and a managed...SeniorRemote workWorldwideFlexible hours
- ...holidays , to support a 24/7 environment. Respond to security incidents and operational escalations outside of... ...containment, eradication, and post-incident reviews. Senior Application Security Engineer - Blue Team Who You Are A defensive security...SeniorRemote workNight shift
$97.1k - $161.8k
...capturing and refining information security requirements and ensures... ...the areas of secure coding, application authentication, encryption,... ...: Develop and implement engineering's technical security... ...Technology, and occasionally senior leaders within Cybersecurity...SeniorWork experience placementWork from homeWorldwide1 day per week$325k - $405k
A leading AI research firm in San Francisco is seeking a Security Engineer for Application Security. The role involves identifying and mitigating security vulnerabilities, conducting assessments, and developing security tools. Ideal candidates will have extensive experience...SeniorRemote job- ...ServiceNow's leading workflow automation with Moveworks' Reasoning Engine and natural language capabilities, we deliver the AI... ...everyone. The Role Are you interested in being part of Application Security efforts at Moveworks? Do you enjoy collaborating closely with...SeniorWork at officeRemote workFlexible hours
$130k - $185k
BetterHelp is looking for a Senior Security Software Engineer for its Application Security Team. You will work in a collaborative environment focused on enhancing application security through vulnerability triage, code review, and secure coding practices. With a salary...SeniorRemote job$130k - $218k
A leading blockchain company is seeking a Senior Application Security Engineer to join their growing security team. The role involves embedding security throughout the software development lifecycle for MetaMask products, ensuring they meet high-security standards. Applicants...SeniorRemote job$100k - $150k
Bright Vision Technologies is seeking an Application Security Engineer to enhance security practices across the software development lifecycle. The ideal candidate should have over five years of application security experience, strong communication skills, and proven ability...SeniorRemote jobFull time- GuidePoint Security, LLC in the United States seeks cybersecurity professionals to leverage expertise in Static Application Security Testing and CI/CD practices. The role involves working... ...’s degree and extensive security engineering experience. Benefits include remote...SeniorRemote jobFlexible hours
- A leading AI research firm is seeking a Security Engineer, Application Security. In this role, you will identify and mitigate security vulnerabilities through assessments and collaboration with development teams. The ideal candidate has extensive experience in cybersecurity...SeniorRemote job
- AgileEngine, LLC. in Boca Raton is seeking a Senior Application Security Engineer to architect automated security layers within the SDLC. You'll engineer secure code scanning and integrate security tooling into CI/CD processes. The ideal candidate possesses 6+ years of...SeniorRemote jobFlexible hours
- Bright Vision Technologies seeks an Application Security Engineer to join their team. This remote role focuses on embedding security throughout the software development lifecycle, working closely with engineering teams to ensure secure applications. Candidates should have...SeniorRemote job
- Application Security Engineer (Senior) ID71672 Full time | AgileEngine | United States Posted On 06/18/2026 Job Information City Tampa State/Province Florida 33602 IT Services Job Description AgileEngine is an Inc. 5000 company that creates award-winning software...SeniorFull timeWork at officeRemote workVisa sponsorshipWork visaFlexible hours
- ...pioneering projects, and fast‑tracking careers. Together, we turn ideas into action — let’s get started! We invite a Senior Application Security Engineer to join our team remotely . Responsibilities Demonstrated ability to collaborate with other teams to achieve...SeniorRemote workRelocation
$160k - $220k
...all-driving incredible value for our customers. Join us! The Security team at Zip is responsible for protecting the confidentiality and integrity of our customers’ data. As our first Application Security Engineer, you will take on a dynamic and high impact role. You will...SeniorHome officeFlexible hours$130k - $218k
...MetaMask aims to create a thriving engineering organization that supports the... ...key manager and web3 application development platform. As this user... ...that we keep our users as safe and secure as possible. We are looking for a Senior Application Security Engineer to...SeniorRemote workShift work- Senior Application Security Engineer - Threat Modeling & AI Security Locations: Charlotte, NC (Brevard), Irving/Las Colinas, TX, or Chandler, AZ Schedule: Hybrid (3 Days Onsite / 2 Days Remote) Duration: Contract Overview We are seeking a Senior Application Security Engineer...SeniorContract workRemote work
$180k - $220k
...experimentation, training, and production inference, with security, observability, and control built in. We serve solo... ...truly matters. What We’re Looking For We are looking for a Senior Application Security Engineer to help secure our AI, machine learning, and inference...SeniorWork at officeLocal areaHome officeFlexible hours$180k - $225k
Summary Join our dynamic team as a Senior Application Security Engineer, where you’ll play a pivotal role in securing Temporal’s development pipeline, product, and customer execution environment. In this position, you’ll work closely with software engineering teams and...SeniorTemporary workRemote workWork from homeHome office- ...leading tech company in Plano, TX is seeking an experienced Application Security Analyst to enhance security within DevOps practices. This... ...candidate has over 8 years of experience in DevOps and security engineering, holds a degree in Computer Science or Cybersecurity, and...SeniorRemote work
- A leading security consulting firm seeks a Senior Application Security Engineer to manage security risks and ensure safe application development practices in the cloud. This remote role requires designing secure development frameworks and mentoring teams on best practices...SeniorRemote jobFixed term contract
$176k - $220k
Location San Francisco, CA Employment Type Full time Department Engineering Compensation $176K - $220K For cash compensation, we set... ...expertise, and may vary from the amounts listed above. Senior Application Security Engineer At Handshake, we believe security should be...SeniorFull timeWork at officeLocal areaRemote workFlexible hours- ...fully remote company (even before COVID!), we welcome applicants from almost anywhere. Our team collaborates synchronously... ...money, together. The Role: Monarch is seeking a Senior Application Security Engineer to join our Security Engineering team during a period of...SeniorFull timeWork at officeImmediate startRemote workWork from homeWeekend work
- Position Overview The primary responsibility of the Senior Application Security Engineer (AI-First Development) is to design, orchestrate, and validate the offensive security tooling and adversary-emulation capabilities used to find, prove, and help remediate exploitable...SeniorRemote work
$143k - $224k
...platform, Agility Arc , which allows businesses to deploy, monitor, and scale robot fleets. About The Role As a Senior Application Security Engineer, you will be crucial in integrating security controls directly into our software development lifecycle (SDLC). This...SeniorRemote jobFull timeTemporary workRelocation packageFlexible hours$111k - $144.4k
The Sr. Application Security Engineer is responsible for validating that application services are designed and implemented with high security standards. The role analyzes the security of applications in tandem with their underlying services, including connected dependencies...SeniorRemote jobTemporary workWork experience placement- ...Software as a Service (SaaS) company specializing in property management solutions, is seeking an experienced and senior-level Application Security Engineer to lead our dynamic team in Lehi, UT. As a Senior Application Security Engineer at Entrata, you will play a...SeniorFull timePart timeLive inLocal areaRemote workWorldwideFlexible hours
- ...to combat illicit activity and global security threats. At TRM, you'll join a mission-... ...experts in law enforcement, data science, engineering, and financial intelligence, tackling... ...of the business. We are looking for an Application Security Engineer to build mission-critical...SeniorRemote jobFull timeSummer workImmediate start
- ...Join Hologic's mission to drive a Secure by Design culture within our Breast &... ...Health Connected Health products. As a Senior Product Security Engineer , you will play a pivotal role in... ...Linux operating systems Software application testing and maintenance...SeniorRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Application Security Engineer. Be the first to apply!
- technical application engineer Remote
- application operations engineer Remote
- application engineering manager Remote
- application system engineer Remote
- senior application security engineer Remote
- application performance engineer Remote
- senior application support engineer Remote
- project application engineer Remote
- junior application support engineer Remote
- application engineer Remote


