Offer summary

Qualifications:

7+ years in AppSec, Product Security, or Security Engineering in a modern software company., Strong understanding of application architecture and secure coding in multiple languages such as Python, JavaScript, and C#/.NET., Proficiency in cloud platforms like AWS, GCP, Azure, and containerization technologies like Docker and Kubernetes., Secret or Above clearance or the ability to obtain, with US Citizenship required..

Key responsabilities:

Develop a deep understanding of the software development lifecycle and configuration management.

Oversee third-party vulnerability management and ensure timely resolution within SLAs.

Enhance the secure software development lifecycle program and serve as a subject matter expert.

Implement and manage security tools for code analysis, dependency scanning, and container security.

Job description

Staff Application Security Engineer

DC / NOVA

190-250k base Salary + Excellent Benefits

Our client, a leader in advanced analytics and AI-driven decision-making, is a 100+ staff, Series C, Deep Learning SaaS startup who have their origins at part of a research lab at CalTech and the NASA JPL. Due to their strong ties to the DoD, they are currently seeing a Staff Application Security Engineer in Washington DC.

Staff Application Security Engineer responsibilities:

Develop a deep understanding of the software development lifecycle, build pipelines, software supply chain, and configuration management.
Oversee third-party vulnerability management, ensuring timely tracking and resolution within required SLAs.
Enhance and refine the secure software development lifecycle (SDLC) program, serving as a subject matter expert on secure development and deployment best practices.
Implement and manage security tools for static and dynamic code analysis, dependency scanning, container security, and licensing compliance.
Provide mentorship and technical guidance to team members, fostering a strong security culture.

Staff Application Security Engineer requirements:

7+ years in AppSec, Product Security, or Security Engineering gained in a modern software company
Strong understanding of application architecture, vulnerability identification, and secure coding across multiple languages (Python, JavaScript, C#/.NET, Flask, React, Blazor). Proficiency in cloud platforms (AWS, GCP, Azure) and containerization (Docker, Kubernetes).
Experience working with product managers and engineers to embed security into the development lifecycle.
Expertise in integrating security tools (Wiz, Snyk, GitHub Advanced Security) with vulnerability management systems.
Knowledge of FedRAMP/IL5 security controls and experience managing vulnerabilities in regulated, containerized environments.
Secret or Above clearance or the ability to obtain (US Citizenship required)

Staff Application Security Engineer rewards:

190-250k base salary
Unlimited PTO
Professional development
Platinum level medical, dental, and vision coverage
Remote first working
Award-winning workplace

Certus Recruitment Group is a well-established and experienced specialist consultancy providing sales, marketing, and IT recruitment services. We serve the technology sector across North America, the UK, Europe, and Australia.

If you are ready to take your career to the next level and make a significant impact, apply now!

Required profile