This position is posted by Jobgether on behalf of Huntress. We are currently looking for a Senior Application Security Engineer in the United States.
We are seeking a skilled and proactive Senior Application Security Engineer to lead the development and implementation of a robust application security program. In this role, you will work closely with development teams to embed security practices early in the software development lifecycle, ensuring vulnerabilities are identified and mitigated before production. You will provide guidance, mentorship, and training to engineers while driving continuous improvement in security processes and tooling. This position offers the opportunity to influence architectural decisions, secure critical systems, and contribute to the protection of millions of endpoints globally. The ideal candidate thrives in a fully remote environment, enjoys collaborating with cross-functional teams, and has a strong passion for making security an integral part of software development.
Accountabilities
- Design, evaluate, and implement software security standards across internal development teams.
- Collaborate with engineers to integrate security practices into architecture and design discussions, mitigating risks early in the development lifecycle.
- Serve as a subject matter expert, reviewing high-risk pull requests and providing guidance on secure-by-design principles.
- Lead secure development training and workshops to educate teams on vulnerabilities, best practices, and proactive security measures.
- Partner with DevOps to ensure robust and secure CI/CD pipelines and tooling.
- Drive adoption of security tools, processes, and automated solutions that prevent common vulnerabilities.
- Own and manage the Vulnerability Disclosure Program, maintaining strong collaboration with external security researchers.
- Implement and maintain auditable application security programs (e.g., BSIMM, SAMM) to ensure compliance and continuous improvement.
Requirements
- Proven experience leading application security architecture and design reviews, particularly with Ruby on Rails.
- Extensive background working with developers to enforce application security standards and practices.
- Expertise in software vulnerability management, including triage, assessment, analysis, and remediation.
- Experience securing CI/CD pipelines with strong security controls using both off-the-shelf and custom tooling.
- Hands-on experience with security testing tools across SAST, DAST, SCA, and IaC functional areas.
- Knowledge of threat modeling frameworks and secure development processes.
- Familiarity with IaaS/PaaS cloud infrastructure, infrastructure as code, and software-oriented architectures.
- Excellent communication and collaboration skills to guide teams and gain buy-in for security initiatives.
- Bonus: Expertise in OS, agent, and memory security across macOS, Linux, and Windows, with a focus on sandboxing and system-level isolation techniques.
Benefits
- 100% remote work environment with flexibility to work from anywhere in the U.S.
- Competitive base salary of $140,000–$165,000 plus bonus and equity options.
- Generous paid time off, including vacation, sick time, and holidays.
- 12 weeks of paid parental leave.
- Comprehensive medical, dental, and vision insurance plans.
- 401(k) with 5% contribution regardless of employee contribution.
- Life and disability insurance coverage.
- Stock options for full-time employees.
- One-time $500 reimbursement for home office setup or upgrades.
- Annual education and professional development allowance.
- $75 monthly digital reimbursement.
- Access to coaching, personal, and professional growth resources via the BetterUp platform.
Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.
When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.
The process is transparent, skills-based, and free of bias—focusing solely on your fit for the role. Once the shortlist is completed, it is shared directly with the company that owns the job opening. Their internal hiring team then makes the final decision and handles next steps, such as interviews or assessments.
Thank you for your interest!
#LI-CL1