Senior Application Security Engineer
Hyland
Role Description
We're looking for a Senior Application Security Engineer to help build and mature our application security program. You'll be a hands-on technical leader embedded across our engineering organization, working with developers to embed security into the SDLC, identifying and remediating vulnerabilities, and shaping the tools and processes that keep our products and customers safe. Deep expertise in securing cloud-native architectures and automating security into CI/CD pipelines is essential, as security needs to scale with our engineering velocity. As AI-powered development becomes a bigger part of how we build and ship software, you'll also help engineers navigate the security challenges that come with it. This is a high-impact, generalist AppSec role for someone equally comfortable reviewing threat models, triaging bug bounty reports, and writing secure coding guidance.
Your Role Responsibilities – Here's What You'll Do
- Partner with engineering, product, and DevOps teams to integrate security practices throughout the software development lifecycle, with a strong focus on cloud-native environments and automated pipelines.
- Design, implement, and maintain security tooling and gates within CI/CD pipelines, covering SAST, DAST, SCA, secrets detection, and container scanning, so security feedback reaches developers early and automatically.
- Collaborate with infrastructure and platform teams to help guide and improve the security posture of cloud-native environments across AWS, GCP, or Azure, including containerized workloads, Kubernetes clusters, serverless functions, and managed services.
- Lead and own the threat modeling process across product and engineering teams, conducting application security assessments including code review and manual penetration testing of applications.
- Triage and remediate findings from SAST, DAST, SCA, and bug bounty programs; help engineering teams understand and fix vulnerabilities.
- Define and maintain secure coding standards, security testing requirements, and developer-facing security documentation.
- Advise developers on AI security best practices, covering risks introduced by LLM integrations such as prompt injection, insecure output handling, and data leakage, as well as the secure use of AI coding assistants.
- Evaluate and implement AppSec tooling to improve detection and developer feedback loops.
- Respond to and investigate security incidents involving application-layer issues.
- Mentor engineers on security best practices, including emerging AI-related risks, and serve as a trusted security advisor to product teams.
- Contribute to security architecture reviews for new features and systems, including cloud-native and AI/ML components.
Qualifications
- 5+ years of experience in application security, software security engineering, or a closely related role.
- Hands-on experience securing cloud-native environments on AWS, GCP, or Azure, including containers, Kubernetes, IAM, and serverless architectures.
- Proven experience integrating security into CI/CD pipelines (e.g., GitHub Actions, Jenkins) automating SAST, DAST, SCA, and secrets scanning.
- Strong command of application security fundamentals: OWASP Top 10, secure design principles, and common vulnerability classes such as injection, auth flaws, and business logic issues.
- Experience with security testing across applications.
- Proficiency with AppSec tooling such as Checkmarx, Burp Suite, Trivy, Checkov, and Veracode.
- Ability to read and reason about code in at least one of: Python, JavaScript/TypeScript, Java, Go, .NET (C#), or similar.
- Strong written and verbal communication skills, with the ability to explain security risk to both technical and non-technical audiences.
Requirements
- Experience with infrastructure-as-code security (Terraform, CloudFormation, Helm) and policy-as-code frameworks such as OPA.
- Familiarity with AI/LLM security risks including prompt injection, model abuse, and insecure integrations, as well as frameworks like the OWASP Top 10 for LLMs.
- Experience securing AI-assisted development workflows and reviewing AI-generated code for security issues.
- One or more relevant certifications: OSCP, CISSP, CEH, GWEB, CCSP, or equivalent.
- Prior experience in a product-led tech or SaaS environment.
Benefits
- Hyland is the pioneer of the Content Innovation Cloud™, delivering ubiquitous enterprise intelligence to organizations with solutions that unlock actionable insights and drive automation.
- Trusted by thousands of organizations worldwide, including many of the Fortune 100.
- Hyland's solutions create the foundation for a connected, agentic enterprise, where teams harness the power of AI to redefine how they operate and engage with those they serve.
$140k - $160k
...Senior Application Security Engineer Chicago, Illinois 100% Remote Full Time $140k - $160k A consulting company is looking to bring on a hands on a Senior Application Security Engineer to work with clients on new development. You'll perform code reviews,...SeniorFull timeRemote work- ...About the role We're looking for a Senior Application Security Engineer to help keep Tangem's products secure. You'll focus on finding security issues in our web applications, backend services, and APIs before attackers do. You'll work closely with developers, review...SeniorRemote work
$160k - $220k
...all–driving incredible value for our customers. Join us! The Security team at Zip is responsible for protecting the confidentiality and integrity of our customers’ data. As our first Application Security Engineer, you will take on a dynamic and high impact role. You will...SeniorHome officeFlexible hours$97.1k - $161.8k
...capturing and refining information security requirements and ensures... ...the areas of secure coding, application authentication, encryption,... ...: Develop and implement engineering’s technical security policies... ...Technology, and occasionally senior leaders within Cybersecurity...SeniorWork experience placementWork from homeWorldwide1 day per week- ...Security Engineer 6–8+ years of experience in Application Security, Product Security, or DevOps with a strong security focus. Extensive hands-on experience with SAST, SCA, DAST, IaC scanning, and integrating security tools into modern CI/CD pipelines. Proven ability...SeniorRemote work
$325k - $405k
A leading AI research firm in San Francisco is seeking a Security Engineer for Application Security. The role involves identifying and mitigating security vulnerabilities, conducting assessments, and developing security tools. Ideal candidates will have extensive experience...SeniorRemote job- ...Senior Application Security Engineer Poland The Tripadvisor Group connects people to experiences worth sharing, and aims to be the world's most trusted source for travel and experiences. We leverage our brands, technology, and capabilities to connect our global...SeniorPermanent employmentContract workRemote workWorldwideFlexible hours
- ...ServiceNow's leading workflow automation with Moveworks' Reasoning Engine and natural language capabilities, we deliver the AI... ...everyone. The Role Are you interested in being part of Application Security efforts at Moveworks? Do you enjoy collaborating closely with...SeniorWork at officeRemote workFlexible hours
- ...Senior Application Security Engineer We're looking for a Senior Application Security Engineer to help build and mature our application security program. You'll be a hands-on technical leader embedded across our engineering organization, working with developers to embed...SeniorRemote workWorldwide
$111k - $144.4k
...Sr. Application Security Engineer The Sr. Application Security Engineer is responsible for validating that application services are designed and implemented with high security standards. The role analyzes the security of applications in tandem with their underlying...SeniorTemporary workWork experience placementRemote work- ...leading tech company in Plano, TX is seeking an experienced Application Security Analyst to enhance security within DevOps practices. This... ...candidate has over 8 years of experience in DevOps and security engineering, holds a degree in Computer Science or Cybersecurity, and...SeniorRemote work
$180k - $225k
...source programming model that can simplify code, make applications more reliable, and help developers focus on the important... ...from you! SUMMARY Join our dynamic team as a Senior Application Security Engineer, where you'll play a pivotal role in securing the Temporal...SeniorFull timeTemporary workPart timeWork at officeRemote workWork from homeHome office$118.45k - $260.59k
...simplify health care one person, one family and one community at a time. POSITION SUMMARY CVS Health is seeking a Senior Manager, Application Security Engineering to lead enterprise application security, vulnerability management, secure software delivery, and security...SeniorHourly payFull timeTemporary workWork experience placementLocal areaRemote work$192k - $240k
Role Description As a Senior Application Security Engineer, you will focus on finding and responding to security vulnerabilities across the Brex platform. In this role, you will: ~Perform code reviews, design reviews, penetration testing, and vulnerability management...SeniorFull timeWork experience placement- Role Description As a Senior Application Security Engineer, you’ll help shape the future of our AppSec program. You’ll work effectively and efficiently in a small, high-impact team, bringing a sense of ownership and community. You’ll have the opportunity to learn quickly...SeniorFull timeFlexible hours
$180k - $215k
Role Description Monarch is seeking a Senior Application Security Engineer to join our Security Engineering team during a period of rapid growth. Reporting to the Head of Engineering Infrastructure, you will be a hands-on practitioner embedded across our product and engineering...SeniorFull timeWork at officeRemote workWeekend work$157k - $216k
...investing in the next generation of our Application Security capability, a continuous, AI-augmented... ...defense program built for a SaaS engineering organization where AI agents and human... ...code side by side at high velocity. As a Senior AI Application Security Engineer, you...SeniorFull timeRemote work$190k - $273k
Role Description The Senior Application Security Engineer II is a senior individual contributor responsible for strengthening Apollo’s secure software development lifecycle and reducing application risk across product, platform, and AI-powered features. This role blends...SeniorFull timeFlexible hours$180k - $210k
Role Description We're hiring a Senior Application Security Engineer to join a small, high-leverage AppSec team. This is a deep-technical IC role with a staff-leaning scope: ~Set the technical direction and own delivery on how we find, fix, and prevent vulnerabilities...SeniorFull timeFlexible hours- Role Description Our team is growing and we're hiring a Senior Application Security Engineer to join our engineering team and enable our next phase of growth. Canary's engineering team is fully remote! This role focuses on embedding security into the software development...SeniorFull timeRemote work
- Role Description GuidePoint Security offers an inclusive set of Application Security services helping clients implement, fine tune and run their Application Security SAST, DAST and SCA tools. Many clients need assistance with either supplementing their Application Security...SeniorFull timeRemote workFlexible hours
$155k - $175k
Role Description The Senior Application Security Engineer is a hands-on technical leader responsible for securing Lumin Digital’s B2B2C SaaS platform across the full software development lifecycle. This role exists at the intersection of application security and AI-augmented...SeniorFull timeRemote workFlexible hours$180k - $210k
...transforms the home buying and selling experience into a simple, secure, and enjoyable process. Our SMB and Enterprise products... ...every year. WHAT YOU'LL WORK ON We're hiring a Senior Application Security Engineer to join a small, high-leverage AppSec team. This is a...SeniorFull timeWork at officeRemote workFlexible hours$120k - $258.5k
...Description Nordstrom is building a new Application Security team, built on a simple idea: teams shouldn... ...we build with AI. You’ll report to the Senior Manager of Application Security and partner closely with product engineering and DevOps, alongside our security peers...SeniorFull time- ...to combat illicit activity and global security threats. At TRM, you'll join a mission-... ...experts in law enforcement, data science, engineering, and financial intelligence, tackling... ...of the business. We are looking for an Application Security Engineer to build mission-critical...SeniorRemote jobFull timeSummer workImmediate start
$143k - $224k
...platform, Agility Arc , which allows businesses to deploy, monitor, and scale robot fleets. About The Role As a Senior Application Security Engineer, you will be crucial in integrating security controls directly into our software development lifecycle (SDLC). This...SeniorRemote jobFull timeTemporary workRelocation packageFlexible hours- ...Find out more about our hiring culture: Dream Team Culture Job Description At ZetaChain, we are seeking a dedicated Protocol Security Engineer to play a pivotal role in fortifying the security of our cutting-edge protocol. You will be deeply involved in the development...Contract workRemote workHome office
$145k - $155k
...weeks per quarter), leaving 5 additional remote days to be used as needed. As a key member of the Security Engineering team, this person will help lead HarbourVest’s Application Security program. The Application Security Engineer (ASE) will serve in a multi-functional role...Work at officeLocal areaRemote work1 day per week- ...public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a... ...more. Who we’re looking for: We are seeking an Application Security Engineer with expertise in Static and Dynamic Application Security...Contract workRemote work
- ...Application Security Engineer They will need to meet the following requirements. Burp and Veracode are currently the areas of focus. ~6+ years of Information Technology experience ~3+ years of experience with supporting Static Application Security Testing (SAST...Remote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Application Security Engineer. Be the first to apply!
- application system engineer Remote
- hydraulic application engineer Remote
- application support engineer Remote
- application engineering manager Remote
- field applications engineer Remote
- senior application security engineer Remote
- application operations engineer Remote
- application performance engineer Remote
- network applications engineer Remote
- senior application support engineer Remote





